Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/openkim-models-2019.07.25/portable-models/EAM_NN_Johnson_1988_Cu__MO_887933271505_002/EAM_NN_Johnson_1988_Cu.c Examining data/openkim-models-2019.07.25/model-drivers/Morse_QuinticSmoothed__MD_093895395358_003/Morse_QuinticSmoothed.c Examining data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c Examining data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c Examining data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.hpp Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANN.hpp Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/network.h Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/helper.hpp Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/network.cpp Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/descriptor.cpp Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/helper.cpp Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANN.cpp Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/descriptor.h Examining data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementationComputeDispatch.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Exception.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/KimAtoms.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/EMTDefaultParameterProvider.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Matrix3x3.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/NeighborCellLocator.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/EMTDefaultParameterProvider.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/mass.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/NeighborLocatorInterface.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/NeighborCellLocator.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/asap_emt_driver.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/EMT.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Matrix3x3.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/KimAsapPython.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Potential.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/AsapObject.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/TinyMatrix.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/EMT.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/KimAtoms.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Debug.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Vec.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/TimingResults.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Exception.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/KimParameterProvider.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Atoms.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/KimParameterProvider.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/AsapNamespace.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/asap_emt_driver.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/asap_kim_api.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/IVec.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Timing.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/KimNeighborLocator.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/KimNeighborLocator.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/asap_kim_api.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/KimTemplates.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/EMTParameterProvider.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/NeighborLocator.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Templates.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Asap.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/AsapPython.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/SymTensor.h Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Vec.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Timing.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/AsapObject.cpp Examining data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Potential.cpp Examining data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c Examining data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_ImplementationComputeDispatch.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_DynamoCubicHermiteSpline.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_DynamoCubicHermiteSpline.hpp Examining data/openkim-models-2019.07.25/model-drivers/Morse_SigmoidalSmoothed__MD_199191711608_002/Morse_SigmoidalSmoothed.c Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_ImplementationComputeDispatch.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_QuinticHermiteSpline.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_QuinticHermiteSpline.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_CubicNaturalSpline.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_ImplementationComputeDispatch.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_CubicNaturalSpline.cpp Examining data/openkim-models-2019.07.25/model-drivers/MFF__MD_514777050453_001/MFF.c Examining data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.hpp Examining data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeber.hpp Examining data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementationComputeDispatch.cpp Examining data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/helper.hpp Examining data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/helper.cpp Examining data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp Examining data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeber.cpp Examining data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c Examining data/openkim-models-2019.07.25/model-drivers/Morse_Shifted__MD_552566534109_003/Morse_Shifted.c Examining data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612.hpp Examining data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp Examining data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612.cpp Examining data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.hpp Examining data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612ImplementationComputeDispatch.cpp Examining data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c Examining data/openkim-models-2019.07.25/model-drivers/EDIP__MD_506186535567_002/EDIP.c Examining data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c Examining data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c Examining data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp Examining data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_QuinticClampedSpline.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_QuinticClampedSpline.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.hpp Examining data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_ImplementationComputeDispatch.cpp Examining data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c Examining data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c Examining data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.h Examining data/openkim-models-2019.07.25/model-drivers/Tersoff_LAMMPS__MD_077075034781_003/model_driver_Tersoff.cpp Examining data/openkim-models-2019.07.25/model-drivers/Tersoff_LAMMPS__MD_077075034781_003/ndarray.hpp Examining data/openkim-models-2019.07.25/model-drivers/Tersoff_LAMMPS__MD_077075034781_003/pair_tersoff.hpp Examining data/openkim-models-2019.07.25/model-drivers/Tersoff_LAMMPS__MD_077075034781_003/pair_tersoff.cpp Examining data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c Examining data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.hpp Examining data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeber.hpp Examining data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementationComputeDispatch.cpp Examining data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/helper.hpp Examining data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/helper.cpp Examining data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp Examining data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeber.cpp FINAL RESULTS: data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:799:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmpnames, particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:872:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:940:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(particleNames_, particleNames[i]); data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:1053:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:1134:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:799:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmpnames, particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:872:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:940:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(particleNames_, particleNames[i]); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:1053:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:1134:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:480:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Could not open potential file:\n\t\t %s", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:491:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Unexpected end of file in %s", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:507:11: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Corrupted format header line in file %s", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:514:11: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Wrong number of data columns in file %%s\nShould be %d, is %d", ncols, size); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:521:11: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Unrecognized format specified for file %s", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:531:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Corrupted header in file %s", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:545:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Format not specified in header of file %s", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:557:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "File %s has no header!", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:573:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Cannot allocate info block for function table %s.", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:628:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Cannot allocate memory for function table %s.", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:644:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Cannot extend memory for function table %s.", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:699:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Cannot extend memory for function table %s.", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:739:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Info line %d in %s corrupt.", i + 1, filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:751:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "numstep = %f rounded to %d in file %s.\n", numstep, pt->len[i], filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:762:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "Cannot allocate memory for function table %s.", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:774:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "wrong format in file %s.", filename); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:1116:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg,"Unable to open species parameter file:\n\t\t %s", data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:1125:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg,"Could not read number of species types from parameter file:\n\t\t %s", data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:1132:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = fscanf(infile, "%s\n", speciesNameString); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:1136:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg,"Could not read all species types from parameter file:\n\t\t %s", data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:799:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmpnames, particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:872:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:940:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(particleNames_, particleNames[i]); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:1053:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:1134:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:799:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmpnames, particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:872:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:940:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(particleNames_, particleNames[i]); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:1053:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:1134:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(line, data/openkim-models-2019.07.25/model-drivers/EDIP__MD_506186535567_002/EDIP.c:739:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = fscanf( data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:378:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:455:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(nextLine, (speciesNameVector[i].ToString()).c_str()); data/openkim-models-2019.07.25/model-drivers/MFF__MD_514777050453_001/MFF.c:3298:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = fscanf(fid, "%s\n", species1NameString); data/openkim-models-2019.07.25/model-drivers/MFF__MD_514777050453_001/MFF.c:3322:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = fscanf(fid, "%s %s\n", &species1NameString, &species2NameString); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1183:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1283:13: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1305:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(nextLine, data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1378:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(nextLine, dummy); data/openkim-models-2019.07.25/model-drivers/Morse_QuinticSmoothed__MD_093895395358_003/Morse_QuinticSmoothed.c:647:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = fscanf(fid, data/openkim-models-2019.07.25/model-drivers/Morse_Shifted__MD_552566534109_003/Morse_Shifted.c:602:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = fscanf(fid, data/openkim-models-2019.07.25/model-drivers/Morse_SigmoidalSmoothed__MD_199191711608_002/Morse_SigmoidalSmoothed.c:622:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = fscanf(fid, data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:401:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:495:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:398:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c:586:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = fscanf(fid, data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c:638:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->speciesName, "%s", speciesNameString); data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c:825:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(stringBuffer, "%s.params", modelName); data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c:828:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(stringBuffer, "%s/%s.params", path, modelName); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:678:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ier = fscanf(fid, SPEC_NAME_FMT, species_name_string); /* species symbol */ data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:798:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->species_name, data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:966:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s.params", model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:969:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s/%s.params", path, model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:565:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ier = fscanf(fid, SPEC_NAME_FMT, species_name_string); /* species symbol */ data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:648:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->species_name, data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:816:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s.params", model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:819:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s/%s.params", path, model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:577:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ier = fscanf(fid, SPEC_NAME_FMT, species_name_string); /* species symbol */ data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:697:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->species_name, data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:865:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s.params", model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:868:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s/%s.params", path, model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:527:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ier = fscanf(fid, SPEC_NAME_FMT, species_name_string); /* species symbol */ data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:610:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->species_name, data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:778:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s.params", model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:781:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s/%s.params", path, model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:523:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ier = fscanf(fid, SPEC_NAME_FMT, species_name_string); /* species symbol */ data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:606:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->species_name, data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:774:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s.params", model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:777:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s/%s.params", path, model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c:532:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = fscanf(fid, "%s \n", speciesNameString); /* element symbol */ data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c:579:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->speciesName, "%s", speciesNameString); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c:748:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(stringBuffer, "%s.params", modelName); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c:751:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(stringBuffer, "%s/%s.params", path, modelName); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:523:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ier = fscanf(fid, SPEC_NAME_FMT, species_name_string); /* species symbol */ data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:606:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->species_name, data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:774:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s.params", model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:777:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s/%s.params", path, model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:527:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ier = fscanf(fid, SPEC_NAME_FMT, species_name_string); /* species symbol */ data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:610:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->species_name, data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:778:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s.params", model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:781:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s/%s.params", path, model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:523:9: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ier = fscanf(fid, SPEC_NAME_FMT, species_name_string); /* species symbol */ data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:606:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->species_name, data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:774:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s.params", model_name); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:777:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_buffer, "%s/%s.params", path, model_name); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:346:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:358:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:377:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, "%s %lf", name, &cutoff); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:381:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:390:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:407:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:420:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, "%s", name); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:424:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:436:13: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, "%s %d %d", name, &numParamSets, &numParams); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:440:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:498:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errorMsg, "unsupported descriptor `%s' from line:\n", name); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:499:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:515:11: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:532:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, "%*s %s", name); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:537:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:563:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:588:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:604:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:627:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:639:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:649:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ier = sscanf(nextLine, "%s", name); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:653:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:663:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:681:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:716:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:730:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(errorMsg, nextLine); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:785:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(line, linePtr); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:808:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(line, linePtr); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/descriptor.cpp:71:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nm, name); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/network.cpp:189:16: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. random = ((random / 2.).array() + 0.5 + keep_prob).floor(); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/network.cpp:191:32: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. keep_prob_binary_[layer] = random.replicate( data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:388:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parameterFilePointers[i] = fopen(paramFileName->c_str(), "r"); data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:391:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:392:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, "EAM parameter file number %d cannot be opened", i); data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:421:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:422:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:455:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:456:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:474:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:560:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:762:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:800:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ** const elems = new char *[numberModelSpecies_]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:855:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:916:49: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char ** const particleNames = new const char *[numberModelSpecies_]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:937:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(particleNames_, "%d ", numberModelSpecies_); data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:1047:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:1128:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:1261:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.hpp:137:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char * comments_ptr_[MAX_PARAMETER_FILES]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.hpp:138:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comments_[MAX_PARAMETER_FILES][MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.hpp:139:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char particleNames_[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.hpp:143:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char latticeType_[MAX_NUMBER_OF_SPECIES][MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:388:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parameterFilePointers[i] = fopen(paramFileName->c_str(), "r"); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:391:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:392:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, "EAM parameter file number %d cannot be opened", i); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:421:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:422:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:455:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:456:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:474:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:560:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:762:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:800:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ** const elems = new char *[numberModelSpecies_]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:855:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:916:49: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char ** const particleNames = new const char *[numberModelSpecies_]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:937:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(particleNames_, "%d ", numberModelSpecies_); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:1047:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:1128:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:1261:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.hpp:137:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char * comments_ptr_[MAX_PARAMETER_FILES]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.hpp:138:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comments_[MAX_PARAMETER_FILES][MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.hpp:139:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char particleNames_[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.hpp:143:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char latticeType_[MAX_NUMBER_OF_SPECIES][MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:469:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024], msg[255]; data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:478:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(filename, "r"); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:616:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[255]; data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:686:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Potential %1d%1d shifted by %f", (i / ntypes), (i % ntypes), delta); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:729:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[255]; data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:790:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Potential %1d%1d shifted by %f", (i / ntypes), (i % ntypes), delta); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:844:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[255]; data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:853:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Involved particles are %d (type %d) and %d (type %d).", i, types[i], j, types[j]); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:859:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "%f,", Rij[l]); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:863:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "%f), distance is %f\n\n", Rij[DIM - 1], R); data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:1005:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[255], speciesNameString[100]; data/openkim-models-2019.07.25/model-drivers/EAM_IMD__MD_113599595631_003/EAM_IMD.c:1112:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(species_paramfile_name, "r"); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:388:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parameterFilePointers[i] = fopen(paramFileName->c_str(), "r"); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:391:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:392:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, "EAM parameter file number %d cannot be opened", i); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:421:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:422:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:455:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:456:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:474:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:560:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:762:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:800:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ** const elems = new char *[numberModelSpecies_]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:855:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:916:49: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char ** const particleNames = new const char *[numberModelSpecies_]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:937:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(particleNames_, "%d ", numberModelSpecies_); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:1047:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:1128:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:1261:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.hpp:137:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char * comments_ptr_[MAX_PARAMETER_FILES]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.hpp:138:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comments_[MAX_PARAMETER_FILES][MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.hpp:139:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char particleNames_[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.hpp:143:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char latticeType_[MAX_NUMBER_OF_SPECIES][MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:388:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parameterFilePointers[i] = fopen(paramFileName->c_str(), "r"); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:391:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:392:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, "EAM parameter file number %d cannot be opened", i); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:421:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:422:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:455:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:456:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:474:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:560:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:762:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:800:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ** const elems = new char *[numberModelSpecies_]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:855:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:916:49: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char ** const particleNames = new const char *[numberModelSpecies_]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:937:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(particleNames_, "%d ", numberModelSpecies_); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:1047:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:1128:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:1261:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.hpp:137:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char * comments_ptr_[MAX_PARAMETER_FILES]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.hpp:138:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comments_[MAX_PARAMETER_FILES][MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.hpp:139:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char particleNames_[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.hpp:143:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char latticeType_[MAX_NUMBER_OF_SPECIES][MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EDIP__MD_506186535567_002/EDIP.c:673:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char speciesNameString[100]; data/openkim-models-2019.07.25/model-drivers/EDIP__MD_506186535567_002/EDIP.c:732:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(paramfile1name, "r"); data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/AsapObject.cpp:41:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[50]; data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/AsapObject.cpp:42:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "0x%p", this); data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/EMT.cpp:138:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[50]; data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/EMT.cpp:139:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "0x%p", this); data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/EMT.cpp:166:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[500]; data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/NeighborCellLocator.cpp:1007:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(old_inverse_cell, atoms->GetInverseCell(), 3*sizeof(Vec)); data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/NeighborCellLocator.cpp:1101:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(old_inverse_cell, atoms->GetInverseCell(), 3*sizeof(Vec)); data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/NeighborCellLocator.cpp:1141:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(old_inverse_cell, atoms->GetInverseCell(), 3*sizeof(Vec)); data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/NeighborCellLocator.cpp:1304:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[500]; data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Timing.h:140:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/openkim-models-2019.07.25/model-drivers/EMT_Asap__MD_128315414717_004/Timing.h:143:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "-%d", threadnum); data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:308:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parameterFilePointers[i] = fopen(paramFileName->c_str(), "r"); data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:311:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:312:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:336:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char spec1[MAXLINE], spec2[MAXLINE], nextLine[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:347:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "unable to read first line of the parameter file"); data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:387:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading lines of the parameter file"); data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:449:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "There are not values for like-like pairs of:"); data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:454:7: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(nextLine, " "); data/openkim-models-2019.07.25/model-drivers/MFF__MD_514777050453_001/MFF.c:3178:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species1NameString[100], species2NameString[100]; data/openkim-models-2019.07.25/model-drivers/MFF__MD_514777050453_001/MFF.c:3204:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dummy[255]; data/openkim-models-2019.07.25/model-drivers/MFF__MD_514777050453_001/MFF.c:3260:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(paramfile1name, "r"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1060:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char spec1[MAXLINE], spec2[MAXLINE], nextLine[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1061:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dummy[12]; data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1141:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(paramfile1name, "r"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1154:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "unable to read first line of the parameter file"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1194:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading lines of the parameter file"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1205:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1244:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading lines of the parameter file"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1261:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading lines of the parameter file"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1294:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading lines of the parameter file"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1332:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading lines of the parameter file"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1349:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading lines of the parameter file"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1369:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "There are not values for the following pairs: \n"); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1377:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(dummy, "%d and %d\n", i, j); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:1406:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "failed to convert units"); data/openkim-models-2019.07.25/model-drivers/Morse_QuinticSmoothed__MD_093895395358_003/Morse_QuinticSmoothed.c:592:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char speciesNameString[100]; data/openkim-models-2019.07.25/model-drivers/Morse_QuinticSmoothed__MD_093895395358_003/Morse_QuinticSmoothed.c:639:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(paramfile1name, "r"); data/openkim-models-2019.07.25/model-drivers/Morse_Shifted__MD_552566534109_003/Morse_Shifted.c:547:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char speciesNameString[100]; data/openkim-models-2019.07.25/model-drivers/Morse_Shifted__MD_552566534109_003/Morse_Shifted.c:594:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(paramfile1name, "r"); data/openkim-models-2019.07.25/model-drivers/Morse_SigmoidalSmoothed__MD_199191711608_002/Morse_SigmoidalSmoothed.c:567:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char speciesNameString[100]; data/openkim-models-2019.07.25/model-drivers/Morse_SigmoidalSmoothed__MD_199191711608_002/Morse_SigmoidalSmoothed.c:614:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(paramfile1name, "r"); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:434:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). params_file.open(paramFileNames[0]->c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:490:34: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). par_.Nspecies = std::atoi(value.c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:550:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). par_.RsN_rad = std::atoi(value.c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:570:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). par_.RsN_ang = std::atoi(value.c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:578:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). par_.ThetasN = std::atoi(value.c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:587:36: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). par_.Nlayers[s] = std::atoi(value.c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:611:47: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). par_.layers_size[s][l+1] = std::atoi(lsize.c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:616:47: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). par_.layers_size[s][l+1] = std::atoi(value.c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:639:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int actnum = std::atoi(lact.c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:649:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int actnum = std::atoi(value.c_str()); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:669:26: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). weights_file.open(paramFileNames[section]->c_str(), std::ios::binary); data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:328:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parameterFilePointers[i] = fopen(paramFileName->c_str(), "r"); data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:331:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:332:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:357:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char spec1[MAXLINE], spec2[MAXLINE], spec3[MAXLINE], nextLine[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:366:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "unable to read first line of the parameter file"); data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:374:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:414:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading the parameter file"); data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:424:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error parameter file: get unknown species"); data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:505:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading the parameter file"); data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:517:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error parameter file: get unknown species"); data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:530:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:537:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:554:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading parameter file.\n"); data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:336:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parameterFilePointers[i] = fopen(paramFileName->c_str(), "r"); data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:339:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:340:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:365:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char spec1[MAXLINE], spec2[MAXLINE], nextLine[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:374:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "unable to read first line of the parameter file"); data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:413:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error reading lines of the parameter file"); data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:424:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error parameter file: get unknown species"); data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:494:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nextLine, "error: not enough parameter data.\n"); data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:495:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c:126:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char speciesName[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c:463:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char speciesNameString[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c:578:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(paramfile1name, "r"); data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c:812:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char stringBuffer[2048]; data/openkim-models-2019.07.25/model-drivers/TIDP__MD_167784395616_000/TIDP__MD_167784395616_000.c:829:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(stringBuffer, "w"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:558:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name_string[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:559:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strbuf[256]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:670:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(param_file_1_name, "r"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:945:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_buffer[STR_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:970:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(string_buffer, "w"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:446:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name_string[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:557:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(param_file_1_name, "r"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:795:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_buffer[STR_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:820:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(string_buffer, "w"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:457:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name_string[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:458:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strbuf[256]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:569:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(param_file_1_name, "r"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:844:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_buffer[STR_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:869:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(string_buffer, "w"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:408:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name_string[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:519:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(param_file_1_name, "r"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:757:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_buffer[STR_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:782:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(string_buffer, "w"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:404:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name_string[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:515:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(param_file_1_name, "r"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:753:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_buffer[STR_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:778:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(string_buffer, "w"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c:85:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char speciesName[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c:413:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char speciesNameString[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c:524:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(paramfile1name, "r"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c:734:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char stringBuffer[2048]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/ThreeBodyCluster.c:752:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(stringBuffer, "w"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:404:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name_string[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:515:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(param_file_1_name, "r"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:753:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_buffer[STR_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:778:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(string_buffer, "w"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:408:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name_string[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:519:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(param_file_1_name, "r"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:757:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_buffer[STR_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:782:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(string_buffer, "w"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:404:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char species_name_string[SPEC_NAME_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:515:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fid = fopen(param_file_1_name, "r"); data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:753:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_buffer[STR_LEN]; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:778:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(string_buffer, "w"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:294:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parameterFilePointers[i] = fopen(paramFileName->c_str(), "r"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:297:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:298:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(message, "ANN parameter file number %d cannot be opened", i); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:324:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char spec[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:328:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nextLine[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:329:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errorMsg[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:330:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1024]; data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:357:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read lj parameters from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:380:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read cutoff from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:406:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read number of descriptor types from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:423:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read descriptor from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:439:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read descriptor from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:452:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:464:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:476:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:488:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:513:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:535:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:560:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:569:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:587:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read `means' from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:603:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read `means' from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:626:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read number of layers from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:638:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read number of perceptrons from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:652:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read `activation function` from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:680:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read `keep probability` from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:715:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read `weight` from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:729:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errorMsg, "unable to read `bias` from line:\n"); data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:782:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:805:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAXLINE]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:774:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const cmntlength = strlen(&comments_[i][0]); data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:780:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const nameslength = strlen(particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:798:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char * const tmpnames = new char[strlen(particleNames_) + 1]; data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:866:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const cmntlength = strlen(&comments_[fileIndex][0]); data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:941:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(particleNames_, " "); data/openkim-models-2019.07.25/model-drivers/EAM_CubicNaturalSpline__MD_853402641673_002/EAM_Implementation.cpp:945:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const nmlength = strlen(particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:774:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const cmntlength = strlen(&comments_[i][0]); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:780:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const nameslength = strlen(particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:798:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char * const tmpnames = new char[strlen(particleNames_) + 1]; data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:866:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const cmntlength = strlen(&comments_[fileIndex][0]); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:941:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(particleNames_, " "); data/openkim-models-2019.07.25/model-drivers/EAM_Dynamo__MD_120291908751_005/EAM_Implementation.cpp:945:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const nmlength = strlen(particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:774:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const cmntlength = strlen(&comments_[i][0]); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:780:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const nameslength = strlen(particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:798:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char * const tmpnames = new char[strlen(particleNames_) + 1]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:866:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const cmntlength = strlen(&comments_[fileIndex][0]); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:941:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(particleNames_, " "); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticClampedSpline__MD_532469991695_003/EAM_Implementation.cpp:945:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const nmlength = strlen(particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:774:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const cmntlength = strlen(&comments_[i][0]); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:780:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const nameslength = strlen(particleNames_); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:798:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char * const tmpnames = new char[strlen(particleNames_) + 1]; data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:866:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const cmntlength = strlen(&comments_[fileIndex][0]); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:941:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(particleNames_, " "); data/openkim-models-2019.07.25/model-drivers/EAM_QuinticHermiteSpline__MD_029719603993_003/EAM_Implementation.cpp:945:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int const nmlength = strlen(particleNames_); data/openkim-models-2019.07.25/model-drivers/LJ__MD_414112407348_003/LennardJones612Implementation.cpp:503:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } while ((strncmp("#", nextLinePtr, 1) == 0) || (strlen(nextLinePtr) == 0)); data/openkim-models-2019.07.25/model-drivers/Morse_EIP__MD_429561112321_002/Morse_EIP.c:638:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } while ((strncmp("#", nextLinePtr, 1) == 0) || (strlen(nextLinePtr) == 0)); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:681:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). weights_file.read(reinterpret_cast<char*>(&num), sizeof(float)); data/openkim-models-2019.07.25/model-drivers/PANNA__MD_805652781592_000/PANNA.cpp:694:30: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). weights_file.read(reinterpret_cast<char*>(&num), sizeof(float)); data/openkim-models-2019.07.25/model-drivers/SW_MX2__MD_242389978788_001/StillingerWeberImplementation.cpp:582:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } while ((strncmp("#", nextLinePtr, 1) == 0) || (strlen(nextLinePtr) == 0)); data/openkim-models-2019.07.25/model-drivers/SW__MD_335816936951_004/StillingerWeberImplementation.cpp:525:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } while ((strncmp("#", nextLinePtr, 1) == 0) || (strlen(nextLinePtr) == 0)); data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:959:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_KDS__MD_697985444380_000/ThreeBodyBondOrder.c:959:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:809:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_PPM__MD_184422512875_000/ThreeBodyBondOrder.c:809:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:858:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyBondOrder_WR__MD_817691861922_000/ThreeBodyBondOrder.c:858:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:771:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_BH__MD_043141570610_000/ThreeBodyCluster.c:771:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:767:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/Save/01/ThreeBodyCluster.c:767:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:767:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_Gong__MD_065419309200_000/ThreeBodyCluster.c:767:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:771:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_KP__MD_527786671773_000/ThreeBodyCluster.c:771:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:767:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/ThreeBodyCluster_SRS__MD_814842199451_000/ThreeBodyCluster.c:767:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_str_len = strlen(path) + strlen(model_name) + 9; data/openkim-models-2019.07.25/model-drivers/hNN_WT__MD_435082866799_000/ANNImplementation.cpp:770:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } while ((strncmp("#", nextLinePtr, 1) == 0) || (strlen(nextLinePtr) == 0)); ANALYSIS SUMMARY: Hits = 428 Lines analyzed = 72773 in approximately 1.95 seconds (37243 lines/second) Physical Source Lines of Code (SLOC) = 56662 Hits@level = [0] 83 [1] 47 [2] 255 [3] 2 [4] 124 [5] 0 Hits@level+ = [0+] 511 [1+] 428 [2+] 381 [3+] 126 [4+] 124 [5+] 0 Hits/KSLOC@level+ = [0+] 9.01839 [1+] 7.55356 [2+] 6.72408 [3+] 2.22371 [4+] 2.18842 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.