Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/pycxx-7.1.4/Demo/Python3/python.cxx
Examining data/pycxx-7.1.4/Demo/Python3/rangetest.cxx
Examining data/pycxx-7.1.4/Demo/Python3/simple2.cxx
Examining data/pycxx-7.1.4/Demo/Python3/pycxx_iter.cxx
Examining data/pycxx-7.1.4/Demo/Python3/simple.cxx
Examining data/pycxx-7.1.4/Demo/Python3/example.cxx
Examining data/pycxx-7.1.4/Demo/Python3/range.cxx
Examining data/pycxx-7.1.4/Demo/Python2/python.cxx
Examining data/pycxx-7.1.4/Demo/Python2/rangetest.cxx
Examining data/pycxx-7.1.4/Demo/Python2/pycxx_iter.cxx
Examining data/pycxx-7.1.4/Demo/Python2/simple.cxx
Examining data/pycxx-7.1.4/Demo/Python2/example.cxx
Examining data/pycxx-7.1.4/Demo/Python2/range.cxx
Examining data/pycxx-7.1.4/CXX/WrapPython.h
Examining data/pycxx-7.1.4/Src/Python3/cxxextensions.c
Examining data/pycxx-7.1.4/Src/Python3/cxxsupport.cxx
Examining data/pycxx-7.1.4/Src/Python3/cxx_exceptions.cxx
Examining data/pycxx-7.1.4/Src/Python3/cxx_extensions.cxx
Examining data/pycxx-7.1.4/Src/Python2/cxxextensions.c
Examining data/pycxx-7.1.4/Src/Python2/cxxsupport.cxx
Examining data/pycxx-7.1.4/Src/Python2/cxx_exceptions.cxx
Examining data/pycxx-7.1.4/Src/Python2/cxx_extensions.cxx
Examining data/pycxx-7.1.4/Src/cxx_exceptions.cxx
Examining data/pycxx-7.1.4/Src/cxx_extensions.cxx
Examining data/pycxx-7.1.4/Src/IndirectPythonInterface.cxx
Examining data/pycxx-7.1.4/Src/cxxextensions.c
Examining data/pycxx-7.1.4/Src/cxxsupport.cxx
FINAL RESULTS:
data/pycxx-7.1.4/Src/IndirectPythonInterface.cxx:233:5: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_snprintf( python_dll_name, sizeof(python_dll_name_format) / sizeof(char) - 1, python_dll_name_format, PY_MAJOR_VERSION, PY_MINOR_VERSION );
data/pycxx-7.1.4/Demo/Python3/simple.cxx:297:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[64*1024+1];
data/pycxx-7.1.4/Src/IndirectPythonInterface.cxx:231:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char python_dll_name[sizeof(python_dll_name_format)];
ANALYSIS SUMMARY:
Hits = 3
Lines analyzed = 9172 in approximately 0.24 seconds (38276 lines/second)
Physical Source Lines of Code (SLOC) = 6822
Hits@level = [0] 0 [1] 0 [2] 2 [3] 0 [4] 1 [5] 0
Hits@level+ = [0+] 3 [1+] 3 [2+] 3 [3+] 1 [4+] 1 [5+] 0
Hits/KSLOC@level+ = [0+] 0.439754 [1+] 0.439754 [2+] 0.439754 [3+] 0.146585 [4+] 0.146585 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.