Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/raqm-0.7.0/src/raqm.c
Examining data/raqm-0.7.0/src/raqm.h
Examining data/raqm-0.7.0/src/raqm-version.h
Examining data/raqm-0.7.0/tests/raqm-test.c
FINAL RESULTS:
data/raqm-0.7.0/src/raqm.c:146:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define RAQM_DBG(...) fprintf (stderr, __VA_ARGS__)
data/raqm-0.7.0/src/raqm.c:152:25: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define RAQM_TEST(...) printf (__VA_ARGS__)
data/raqm-0.7.0/src/raqm.c:154:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[5]; \
data/raqm-0.7.0/src/raqm.c:416:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (rq->text, text, sizeof (uint32_t) * rq->text_len);
data/raqm-0.7.0/src/raqm.c:465:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (rq->text_utf8, text, sizeof (char) * len);
data/raqm-0.7.0/tests/raqm-test.c:71:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cluster = atoi (argv[++i]);
data/raqm-0.7.0/tests/raqm-test.c:73:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
position = atoi (argv[++i]);
data/raqm-0.7.0/tests/raqm-test.c:75:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
invisible_glyph = atoi (argv[++i]);
data/raqm-0.7.0/tests/raqm-test.c:169:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
start = atoi (strtok (NULL, ","));
data/raqm-0.7.0/tests/raqm-test.c:170:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
length = atoi (strtok (NULL, ","));
data/raqm-0.7.0/tests/raqm-test.c:184:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
start = atoi (strtok (NULL, ","));
data/raqm-0.7.0/tests/raqm-test.c:185:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
length = atoi (strtok (NULL, ","));
data/raqm-0.7.0/tests/raqm-test.c:91:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long req_ver = strtol (req + strlen ("HB_"), NULL, 10);
data/raqm-0.7.0/tests/raqm-test.c:98:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long req_ver = strtol (req + strlen ("FT_"), NULL, 10);
data/raqm-0.7.0/tests/raqm-test.c:158:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert (raqm_set_text_utf8 (rq, text, strlen (text)));
ANALYSIS SUMMARY:
Hits = 15
Lines analyzed = 2529 in approximately 0.14 seconds (18332 lines/second)
Physical Source Lines of Code (SLOC) = 1578
Hits@level = [0] 4 [1] 3 [2] 10 [3] 0 [4] 2 [5] 0
Hits@level+ = [0+] 19 [1+] 15 [2+] 12 [3+] 2 [4+] 2 [5+] 0
Hits/KSLOC@level+ = [0+] 12.0406 [1+] 9.5057 [2+] 7.60456 [3+] 1.26743 [4+] 1.26743 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.