Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/pykerberos-1.1.14/src/base64.c
Examining data/pykerberos-1.1.14/src/base64.h
Examining data/pykerberos-1.1.14/src/kerberos.c
Examining data/pykerberos-1.1.14/src/kerberosbasic.c
Examining data/pykerberos-1.1.14/src/kerberosbasic.h
Examining data/pykerberos-1.1.14/src/kerberosgss.c
Examining data/pykerberos-1.1.14/src/kerberosgss.h
Examining data/pykerberos-1.1.14/src/kerberospw.c
Examining data/pykerberos-1.1.14/src/kerberospw.h
FINAL RESULTS:
data/pykerberos-1.1.14/src/kerberosgss.c:83:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(result, pname);
data/pykerberos-1.1.14/src/base64.c:25:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static signed char index_64[128] =
data/pykerberos-1.1.14/src/kerberosgss.c:34:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char match[1024];
data/pykerberos-1.1.14/src/kerberosgss.c:400:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&token_len, data, sizeof(unsigned int));
data/pykerberos-1.1.14/src/kerberosgss.c:434:61: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
state->response = base64_encode((const unsigned char *)iov[1].buffer.value, iov[1].buffer.length);
data/pykerberos-1.1.14/src/kerberosgss.c:507:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(response, &stoken_len, sizeof(unsigned int));
data/pykerberos-1.1.14/src/kerberosgss.c:509:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(response+index, iov[0].buffer.value, iov[0].buffer.length);
data/pykerberos-1.1.14/src/kerberosgss.c:512:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(response+index, iov[1].buffer.value, iov[1].buffer.length);
data/pykerberos-1.1.14/src/kerberosgss.c:518:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(response+index, iov[2].buffer.value, iov[2].buffer.length);
data/pykerberos-1.1.14/src/kerberosgss.c:539:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/pykerberos-1.1.14/src/kerberosgss.c:572:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, &buf_size, 4);
data/pykerberos-1.1.14/src/kerberosgss.c:812:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf_maj[512];
data/pykerberos-1.1.14/src/kerberosgss.c:813:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf_min[512];
data/pykerberos-1.1.14/src/base64.c:78:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t vlen = strlen(value);
data/pykerberos-1.1.14/src/kerberosgss.c:47:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
match_len = strlen(match);
data/pykerberos-1.1.14/src/kerberosgss.c:82:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = malloc(strlen(pname) + 1);
data/pykerberos-1.1.14/src/kerberosgss.c:127:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name_token.length = strlen(service);
data/pykerberos-1.1.14/src/kerberosgss.c:149:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
principal_token.length = strlen(principal);
data/pykerberos-1.1.14/src/kerberosgss.c:292:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(state->username, (char*) name_token.value, name_token.length);
data/pykerberos-1.1.14/src/kerberosgss.c:575:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf + 4, user, sizeof(buf) - 4);
data/pykerberos-1.1.14/src/kerberosgss.c:577:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
input_token.length = 4 + strlen(user);
data/pykerberos-1.1.14/src/kerberosgss.c:631:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
service_len = strlen(service);
data/pykerberos-1.1.14/src/kerberosgss.c:635:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name_token.length = strlen(service);
data/pykerberos-1.1.14/src/kerberosgss.c:764:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(state->username, (char*) output_token.value, output_token.length);
data/pykerberos-1.1.14/src/kerberosgss.c:790:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(state->targetname, (char*) output_token.value, output_token.length);
data/pykerberos-1.1.14/src/kerberosgss.c:825:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf_maj, (char*) status_string.value, sizeof(buf_maj));
data/pykerberos-1.1.14/src/kerberosgss.c:836:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf_min, (char*) status_string.value, sizeof(buf_min));
ANALYSIS SUMMARY:
Hits = 27
Lines analyzed = 2036 in approximately 0.08 seconds (24832 lines/second)
Physical Source Lines of Code (SLOC) = 1536
Hits@level = [0] 12 [1] 14 [2] 12 [3] 0 [4] 1 [5] 0
Hits@level+ = [0+] 39 [1+] 27 [2+] 13 [3+] 1 [4+] 1 [5+] 0
Hits/KSLOC@level+ = [0+] 25.3906 [1+] 17.5781 [2+] 8.46354 [3+] 0.651042 [4+] 0.651042 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.