Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/rsyslog-8.2010.0/outchannel.c
Examining data/rsyslog-8.2010.0/threads.c
Examining data/rsyslog-8.2010.0/template.c
Examining data/rsyslog-8.2010.0/outchannel.h
Examining data/rsyslog-8.2010.0/action.h
Examining data/rsyslog-8.2010.0/tools/smtradfwd.h
Examining data/rsyslog-8.2010.0/tools/smfwd.c
Examining data/rsyslog-8.2010.0/tools/omdiscard.h
Examining data/rsyslog-8.2010.0/tools/smtradfile.c
Examining data/rsyslog-8.2010.0/tools/omfwd.c
Examining data/rsyslog-8.2010.0/tools/omdiscard.c
Examining data/rsyslog-8.2010.0/tools/smtradfile.h
Examining data/rsyslog-8.2010.0/tools/smfile.c
Examining data/rsyslog-8.2010.0/tools/pmrfc5424.h
Examining data/rsyslog-8.2010.0/tools/syslogd.c
Examining data/rsyslog-8.2010.0/tools/ompipe.h
Examining data/rsyslog-8.2010.0/tools/pmrfc3164.h
Examining data/rsyslog-8.2010.0/tools/omusrmsg.c
Examining data/rsyslog-8.2010.0/tools/smtradfwd.c
Examining data/rsyslog-8.2010.0/tools/gethostn.c
Examining data/rsyslog-8.2010.0/tools/omshell.h
Examining data/rsyslog-8.2010.0/tools/smfwd.h
Examining data/rsyslog-8.2010.0/tools/omusrmsg.h
Examining data/rsyslog-8.2010.0/tools/iminternal.c
Examining data/rsyslog-8.2010.0/tools/logctl.c
Examining data/rsyslog-8.2010.0/tools/ompipe.c
Examining data/rsyslog-8.2010.0/tools/smfile.h
Examining data/rsyslog-8.2010.0/tools/pmrfc3164.c
Examining data/rsyslog-8.2010.0/tools/omshell.c
Examining data/rsyslog-8.2010.0/tools/omfile.c
Examining data/rsyslog-8.2010.0/tools/pmrfc5424.c
Examining data/rsyslog-8.2010.0/tools/rscryutil.c
Examining data/rsyslog-8.2010.0/tools/iminternal.h
Examining data/rsyslog-8.2010.0/tools/omfile.h
Examining data/rsyslog-8.2010.0/tools/syslogd.h
Examining data/rsyslog-8.2010.0/tools/rsyslogd.c
Examining data/rsyslog-8.2010.0/tools/msggen.c
Examining data/rsyslog-8.2010.0/tools/omfwd.h
Examining data/rsyslog-8.2010.0/runtime/tcpclt.c
Examining data/rsyslog-8.2010.0/runtime/tcpclt.h
Examining data/rsyslog-8.2010.0/runtime/linkedlist.h
Examining data/rsyslog-8.2010.0/runtime/nsdsel_gtls.c
Examining data/rsyslog-8.2010.0/runtime/ruleset.c
Examining data/rsyslog-8.2010.0/runtime/objomsr.h
Examining data/rsyslog-8.2010.0/runtime/nssel.h
Examining data/rsyslog-8.2010.0/runtime/batch.h
Examining data/rsyslog-8.2010.0/runtime/stream.h
Examining data/rsyslog-8.2010.0/runtime/conf.h
Examining data/rsyslog-8.2010.0/runtime/msg.h
Examining data/rsyslog-8.2010.0/runtime/nsd_ptcp.h
Examining data/rsyslog-8.2010.0/runtime/net.c
Examining data/rsyslog-8.2010.0/runtime/errmsg.h
Examining data/rsyslog-8.2010.0/runtime/nsd_ossl.c
Examining data/rsyslog-8.2010.0/runtime/prop.c
Examining data/rsyslog-8.2010.0/runtime/lmcry_gcry.c
Examining data/rsyslog-8.2010.0/runtime/cfsysline.h
Examining data/rsyslog-8.2010.0/runtime/nsdsel_ossl.c
Examining data/rsyslog-8.2010.0/runtime/nsdpoll_ptcp.h
Examining data/rsyslog-8.2010.0/runtime/wti.c
Examining data/rsyslog-8.2010.0/runtime/nspoll.c
Examining data/rsyslog-8.2010.0/runtime/gss-misc.h
Examining data/rsyslog-8.2010.0/runtime/nssel.c
Examining data/rsyslog-8.2010.0/runtime/rsconf.h
Examining data/rsyslog-8.2010.0/runtime/glbl.c
Examining data/rsyslog-8.2010.0/runtime/atomic.h
Examining data/rsyslog-8.2010.0/runtime/debug.h
Examining data/rsyslog-8.2010.0/runtime/linkedlist.c
Examining data/rsyslog-8.2010.0/runtime/dnscache.h
Examining data/rsyslog-8.2010.0/runtime/modules.h
Examining data/rsyslog-8.2010.0/runtime/var.c
Examining data/rsyslog-8.2010.0/runtime/nsdsel_ptcp.h
Examining data/rsyslog-8.2010.0/runtime/regexp.h
Examining data/rsyslog-8.2010.0/runtime/syslogd-types.h
Examining data/rsyslog-8.2010.0/runtime/modules.c
Examining data/rsyslog-8.2010.0/runtime/libgcry_common.c
Examining data/rsyslog-8.2010.0/runtime/tcpsrv.c
Examining data/rsyslog-8.2010.0/runtime/wti.h
Examining data/rsyslog-8.2010.0/runtime/strgen.h
Examining data/rsyslog-8.2010.0/runtime/dnscache.c
Examining data/rsyslog-8.2010.0/runtime/var.h
Examining data/rsyslog-8.2010.0/runtime/dynstats.c
Examining data/rsyslog-8.2010.0/runtime/strgen.c
Examining data/rsyslog-8.2010.0/runtime/netstrms.h
Examining data/rsyslog-8.2010.0/runtime/tcps_sess.c
Examining data/rsyslog-8.2010.0/runtime/net.h
Examining data/rsyslog-8.2010.0/runtime/nsdsel_gtls.h
Examining data/rsyslog-8.2010.0/runtime/obj.c
Examining data/rsyslog-8.2010.0/runtime/cryprov.h
Examining data/rsyslog-8.2010.0/runtime/lib_ksils12.h
Examining data/rsyslog-8.2010.0/runtime/hashtable_itr.h
Examining data/rsyslog-8.2010.0/runtime/lib_ksils12.c
Examining data/rsyslog-8.2010.0/runtime/hashtable_private.h
Examining data/rsyslog-8.2010.0/runtime/rsconf.c
Examining data/rsyslog-8.2010.0/runtime/zlibw.c
Examining data/rsyslog-8.2010.0/runtime/objomsr.c
Examining data/rsyslog-8.2010.0/runtime/wtp.c
Examining data/rsyslog-8.2010.0/runtime/lookup.c
Examining data/rsyslog-8.2010.0/runtime/stringbuf.c
Examining data/rsyslog-8.2010.0/runtime/wtp.h
Examining data/rsyslog-8.2010.0/runtime/debug.c
Examining data/rsyslog-8.2010.0/runtime/statsobj.h
Examining data/rsyslog-8.2010.0/runtime/unicode-helper.h
Examining data/rsyslog-8.2010.0/runtime/nsd_ptcp.c
Examining data/rsyslog-8.2010.0/runtime/datetime.c
Examining data/rsyslog-8.2010.0/runtime/queue.h
Examining data/rsyslog-8.2010.0/runtime/janitor.c
Examining data/rsyslog-8.2010.0/runtime/nsdsel_ossl.h
Examining data/rsyslog-8.2010.0/runtime/datetime.h
Examining data/rsyslog-8.2010.0/runtime/janitor.h
Examining data/rsyslog-8.2010.0/runtime/nspoll.h
Examining data/rsyslog-8.2010.0/runtime/srutils.c
Examining data/rsyslog-8.2010.0/runtime/operatingstate.h
Examining data/rsyslog-8.2010.0/runtime/obj-types.h
Examining data/rsyslog-8.2010.0/runtime/tcpsrv.h
Examining data/rsyslog-8.2010.0/runtime/stream.c
Examining data/rsyslog-8.2010.0/runtime/ratelimit.h
Examining data/rsyslog-8.2010.0/runtime/gss-misc.c
Examining data/rsyslog-8.2010.0/runtime/nsdsel_ptcp.c
Examining data/rsyslog-8.2010.0/runtime/sigprov.h
Examining data/rsyslog-8.2010.0/runtime/module-template.h
Examining data/rsyslog-8.2010.0/runtime/srUtils.h
Examining data/rsyslog-8.2010.0/runtime/obj.h
Examining data/rsyslog-8.2010.0/runtime/libgcry.h
Examining data/rsyslog-8.2010.0/runtime/rsyslog.c
Examining data/rsyslog-8.2010.0/runtime/parser.c
Examining data/rsyslog-8.2010.0/runtime/unlimited_select.h
Examining data/rsyslog-8.2010.0/runtime/lmcry_gcry.h
Examining data/rsyslog-8.2010.0/runtime/nsd_gtls.c
Examining data/rsyslog-8.2010.0/runtime/rsyslog.h
Examining data/rsyslog-8.2010.0/runtime/netstrms.c
Examining data/rsyslog-8.2010.0/runtime/lookup.h
Examining data/rsyslog-8.2010.0/runtime/ratelimit.c
Examining data/rsyslog-8.2010.0/runtime/statsobj.c
Examining data/rsyslog-8.2010.0/runtime/stringbuf.h
Examining data/rsyslog-8.2010.0/runtime/libgcry.c
Examining data/rsyslog-8.2010.0/runtime/netstrm.h
Examining data/rsyslog-8.2010.0/runtime/im-helper.h
Examining data/rsyslog-8.2010.0/runtime/prop.h
Examining data/rsyslog-8.2010.0/runtime/operatingstate.c
Examining data/rsyslog-8.2010.0/runtime/lib_ksi_queue.h
Examining data/rsyslog-8.2010.0/runtime/glbl.h
Examining data/rsyslog-8.2010.0/runtime/lmsig_ksi-ls12.h
Examining data/rsyslog-8.2010.0/runtime/hashtable.h
Examining data/rsyslog-8.2010.0/runtime/lmsig_ksi-ls12.c
Examining data/rsyslog-8.2010.0/runtime/tcps_sess.h
Examining data/rsyslog-8.2010.0/runtime/typedefs.h
Examining data/rsyslog-8.2010.0/runtime/parser.h
Examining data/rsyslog-8.2010.0/runtime/cfsysline.c
Examining data/rsyslog-8.2010.0/runtime/ruleset.h
Examining data/rsyslog-8.2010.0/runtime/nsd_gtls.h
Examining data/rsyslog-8.2010.0/runtime/nsd_ossl.h
Examining data/rsyslog-8.2010.0/runtime/lib_ksi_queue.c
Examining data/rsyslog-8.2010.0/runtime/hashtable_itr.c
Examining data/rsyslog-8.2010.0/runtime/regexp.c
Examining data/rsyslog-8.2010.0/runtime/dynstats.h
Examining data/rsyslog-8.2010.0/runtime/queue.c
Examining data/rsyslog-8.2010.0/runtime/nsdpoll_ptcp.c
Examining data/rsyslog-8.2010.0/runtime/netstrm.c
Examining data/rsyslog-8.2010.0/runtime/nsd.h
Examining data/rsyslog-8.2010.0/runtime/zlibw.h
Examining data/rsyslog-8.2010.0/runtime/msg.c
Examining data/rsyslog-8.2010.0/runtime/errmsg.c
Examining data/rsyslog-8.2010.0/runtime/hashtable.c
Examining data/rsyslog-8.2010.0/runtime/conf.c
Examining data/rsyslog-8.2010.0/contrib/imhttp/imhttp.c
Examining data/rsyslog-8.2010.0/contrib/mmcount/mmcount.c
Examining data/rsyslog-8.2010.0/contrib/mmsequence/mmsequence.c
Examining data/rsyslog-8.2010.0/contrib/imtuxedoulog/imtuxedoulog.c
Examining data/rsyslog-8.2010.0/contrib/omczmq/omczmq.c
Examining data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c
Examining data/rsyslog-8.2010.0/contrib/improg/improg.c
Examining data/rsyslog-8.2010.0/contrib/pmaixforwardedfrom/pmaixforwardedfrom.c
Examining data/rsyslog-8.2010.0/contrib/mmrfc5424addhmac/mmrfc5424addhmac.c
Examining data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c
Examining data/rsyslog-8.2010.0/contrib/mmdarwin/protocol.h
Examining data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c
Examining data/rsyslog-8.2010.0/contrib/omamqp1/omamqp1.c
Examining data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c
Examining data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c
Examining data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c
Examining data/rsyslog-8.2010.0/contrib/imkmsg/imkmsg.h
Examining data/rsyslog-8.2010.0/contrib/imkmsg/imkmsg.c
Examining data/rsyslog-8.2010.0/contrib/omtcl/omtcl.c
Examining data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c
Examining data/rsyslog-8.2010.0/contrib/pmcisconames/pmcisconames.c
Examining data/rsyslog-8.2010.0/contrib/impcap/tcp_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/ipv6_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/smb_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/ftp_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/http_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/ipx_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/dns_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/arp_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/llc_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/udp_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/ipv4_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/parsers.h
Examining data/rsyslog-8.2010.0/contrib/impcap/icmp_parser.c
Examining data/rsyslog-8.2010.0/contrib/impcap/impcap.c
Examining data/rsyslog-8.2010.0/contrib/impcap/eth_parser.c
Examining data/rsyslog-8.2010.0/contrib/pmpanngfw/pmpanngfw.c
Examining data/rsyslog-8.2010.0/contrib/imczmq/imczmq.c
Examining data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c
Examining data/rsyslog-8.2010.0/contrib/fmhash/fmhash.c
Examining data/rsyslog-8.2010.0/contrib/pmsnare/pmsnare.c
Examining data/rsyslog-8.2010.0/contrib/mmgrok/mmgrok.c
Examining data/rsyslog-8.2010.0/contrib/omfile-hardened/omfile-hardened.c
Examining data/rsyslog-8.2010.0/contrib/pmdb2diag/pmdb2diag.c
Examining data/rsyslog-8.2010.0/contrib/omhiredis/omhiredis.c
Examining data/rsyslog-8.2010.0/contrib/mmtaghostname/mmtaghostname.c
Examining data/rsyslog-8.2010.0/parse.h
Examining data/rsyslog-8.2010.0/compat/asprintf.c
Examining data/rsyslog-8.2010.0/compat/getifaddrs.c
Examining data/rsyslog-8.2010.0/compat/solaris_elf_fix.c
Examining data/rsyslog-8.2010.0/compat/ifaddrs.h
Examining data/rsyslog-8.2010.0/compat/strndup.c
Examining data/rsyslog-8.2010.0/tests/override_gethostname_nonfqdn.c
Examining data/rsyslog-8.2010.0/tests/randomgen.c
Examining data/rsyslog-8.2010.0/tests/uxsockrcvr.c
Examining data/rsyslog-8.2010.0/tests/chkseq.c
Examining data/rsyslog-8.2010.0/tests/have_relpSrvSetTlsConfigCmd.c
Examining data/rsyslog-8.2010.0/tests/have_relpEngineSetTLSLibByName.c
Examining data/rsyslog-8.2010.0/tests/diagtalker.c
Examining data/rsyslog-8.2010.0/tests/test_id.c
Examining data/rsyslog-8.2010.0/tests/override_getaddrinfo.c
Examining data/rsyslog-8.2010.0/tests/minitcpsrvr.c
Examining data/rsyslog-8.2010.0/tests/tcpflood.c
Examining data/rsyslog-8.2010.0/tests/syslog_caller.c
Examining data/rsyslog-8.2010.0/tests/inputfilegen.c
Examining data/rsyslog-8.2010.0/tests/msleep.c
Examining data/rsyslog-8.2010.0/tests/override_gethostname.c
Examining data/rsyslog-8.2010.0/tests/ourtail.c
Examining data/rsyslog-8.2010.0/tests/check_relpEngineVersion.c
Examining data/rsyslog-8.2010.0/tests/mangle_qi.c
Examining data/rsyslog-8.2010.0/tests/have_relpSrvSetOversizeMode.c
Examining data/rsyslog-8.2010.0/tests/miniamqpsrvr.c
Examining data/rsyslog-8.2010.0/tests/omrelp_dflt_port.c
Examining data/rsyslog-8.2010.0/tests/journal_print.c
Examining data/rsyslog-8.2010.0/plugins/mmsnmptrapd/mmsnmptrapd.c
Examining data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c
Examining data/rsyslog-8.2010.0/plugins/omprog/omprog.c
Examining data/rsyslog-8.2010.0/plugins/pmciscoios/pmciscoios.c
Examining data/rsyslog-8.2010.0/plugins/fmhttp/fmhttp.c
Examining data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c
Examining data/rsyslog-8.2010.0/plugins/omtesting/omtesting.c
Examining data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c
Examining data/rsyslog-8.2010.0/plugins/mmrm1stspace/mmrm1stspace.c
Examining data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c
Examining data/rsyslog-8.2010.0/plugins/omruleset/omruleset.c
Examining data/rsyslog-8.2010.0/plugins/omstdout/omstdout.c
Examining data/rsyslog-8.2010.0/plugins/mmjsonparse/mmjsonparse.c
Examining data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c
Examining data/rsyslog-8.2010.0/plugins/omhdfs/omhdfs.c
Examining data/rsyslog-8.2010.0/plugins/omsnmp/omsnmp.c
Examining data/rsyslog-8.2010.0/plugins/omsnmp/omsnmp.h
Examining data/rsyslog-8.2010.0/plugins/pmnull/pmnull.c
Examining data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c
Examining data/rsyslog-8.2010.0/plugins/pmnormalize/pmnormalize.c
Examining data/rsyslog-8.2010.0/plugins/mmnormalize/mmnormalize.c
Examining data/rsyslog-8.2010.0/plugins/mmpstrucdata/mmpstrucdata.c
Examining data/rsyslog-8.2010.0/plugins/imkafka/dummy.c
Examining data/rsyslog-8.2010.0/plugins/imkafka/imkafka.c
Examining data/rsyslog-8.2010.0/plugins/omudpspoof/omudpspoof.c
Examining data/rsyslog-8.2010.0/plugins/mmdblookup/dummy.c
Examining data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c
Examining data/rsyslog-8.2010.0/plugins/pmlastmsg/pmlastmsg.c
Examining data/rsyslog-8.2010.0/plugins/mmfields/mmfields.c
Examining data/rsyslog-8.2010.0/plugins/ommail/ommail.c
Examining data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c
Examining data/rsyslog-8.2010.0/plugins/omlibdbi/omlibdbi.c
Examining data/rsyslog-8.2010.0/plugins/omlibdbi/dummy.c
Examining data/rsyslog-8.2010.0/plugins/im3195/im3195.c
Examining data/rsyslog-8.2010.0/plugins/mmaudit/mmaudit.c
Examining data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.h
Examining data/rsyslog-8.2010.0/plugins/imsolaris/imsolaris.h
Examining data/rsyslog-8.2010.0/plugins/imsolaris/imsolaris.c
Examining data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c
Examining data/rsyslog-8.2010.0/plugins/immark/immark.h
Examining data/rsyslog-8.2010.0/plugins/immark/immark.c
Examining data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c
Examining data/rsyslog-8.2010.0/plugins/omkafka/dummy.c
Examining data/rsyslog-8.2010.0/plugins/imfile/imfile.c
Examining data/rsyslog-8.2010.0/plugins/imfile/siphash.c
Examining data/rsyslog-8.2010.0/plugins/imgssapi/imgssapi.c
Examining data/rsyslog-8.2010.0/plugins/imdiag/imdiag.c
Examining data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c
Examining data/rsyslog-8.2010.0/plugins/omgssapi/omgssapi.c
Examining data/rsyslog-8.2010.0/plugins/ommongodb/ommongodb.c
Examining data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c
Examining data/rsyslog-8.2010.0/plugins/omjournal/omjournal.c
Examining data/rsyslog-8.2010.0/plugins/imtcp/imtcp.c
Examining data/rsyslog-8.2010.0/plugins/mmutf8fix/mmutf8fix.c
Examining data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c
Examining data/rsyslog-8.2010.0/plugins/omuxsock/omuxsock.c
Examining data/rsyslog-8.2010.0/plugins/impstats/impstats.c
Examining data/rsyslog-8.2010.0/plugins/imudp/imudp.c
Examining data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c
Examining data/rsyslog-8.2010.0/plugins/imjournal/dummy.c
Examining data/rsyslog-8.2010.0/plugins/imklog/bsd.c
Examining data/rsyslog-8.2010.0/plugins/imklog/imklog.h
Examining data/rsyslog-8.2010.0/plugins/imklog/imklog.c
Examining data/rsyslog-8.2010.0/threads.h
Examining data/rsyslog-8.2010.0/parse.c
Examining data/rsyslog-8.2010.0/template.h
Examining data/rsyslog-8.2010.0/dirty.h
Examining data/rsyslog-8.2010.0/action.c
Examining data/rsyslog-8.2010.0/grammar/rainerscript.h
Examining data/rsyslog-8.2010.0/grammar/grammar.h
Examining data/rsyslog-8.2010.0/grammar/rainerscript.c
Examining data/rsyslog-8.2010.0/grammar/parserif.h
Examining data/rsyslog-8.2010.0/grammar/grammar.c
Examining data/rsyslog-8.2010.0/grammar/lexer.c
FINAL RESULTS:
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:493:5: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
if(chown(local.sun_path, pSrv->fileUID, pSrv->fileGID) != 0) {
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:500:5: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if(chmod(local.sun_path, pSrv->fCreateMode) != 0) {
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:531:5: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if(chmod((char*)pLstn->sockName, 0666) < 0) {
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:779:16: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
if((lenRead = readlink(namebuf, (char*)buf, lenBuf - 1)) == -1) {
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:613:9: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
if (chown(path, uid, gid)) {
data/rsyslog-8.2010.0/runtime/srutils.c:231:9: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
if(chown((char*)pszWork, uid, gid) != 0) {
data/rsyslog-8.2010.0/tools/omusrmsg.c:264:3: [5] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is high; the length parameter
appears to be a constant, instead of computing the number of characters
left.
strncat(p, ut.ut_line, UNAMESZ);
data/rsyslog-8.2010.0/compat/asprintf.c:33:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = vsnprintf(NULL, 0, fmt, ap);
data/rsyslog-8.2010.0/compat/asprintf.c:42:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(*strp, len+1, fmt, ap);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:465:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char*)pInst->pszNewFName + matches[0].rm_so,
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:638:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dirn + matches[0].rm_so, inst->ff_rename);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:646:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dirn + matches[0].rm_so, inst->ff_reject);
data/rsyslog-8.2010.0/contrib/imkmsg/imkmsg.c:132:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf((char*)msgBuf, sizeof(msgBuf), fmt, ap);
data/rsyslog-8.2010.0/contrib/imkmsg/imkmsg.h:51:93: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
rsRetVal imkmsgLogIntMsg(syslog_pri_t priority, const char *fmt, ...) __attribute__((format(printf,2, 3)));
data/rsyslog-8.2010.0/contrib/omfile-hardened/omfile-hardened.c:564:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access((char*)newFileName, F_OK) != 0) {
data/rsyslog-8.2010.0/contrib/pmdb2diag/pmdb2diag.c:159:3: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sscanf(ms, (*tzpos == '+') ? "%d+%d " : "%d-%d ", &secfrac, &tzoff);
data/rsyslog-8.2010.0/grammar/grammar.c:883:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define YYFPRINTF fprintf
data/rsyslog-8.2010.0/grammar/parserif.h:23:64: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void parser_errmsg(const char *fmt, ...) __attribute__((format(printf, 1, 2)));
data/rsyslog-8.2010.0/grammar/parserif.h:24:65: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void parser_warnmsg(const char *fmt, ...) __attribute__((format(printf, 1, 2)));
data/rsyslog-8.2010.0/plugins/imdiag/imdiag.c:203:39: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
static rsRetVal __attribute__((format(printf, 2, 3)))
data/rsyslog-8.2010.0/plugins/imdiag/imdiag.c:212:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = vsnprintf((char*)buf, sizeof(buf), fmt, ap);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1380:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ceeMsg, CONST_CEE_COOKIE);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1381:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(ceeMsg, (char*)rsCStrGetSzStrNoNULL(cstrLine));
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1800:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char*)curr_wd+len_curr_wd+1, (char*)inst->pszFileName);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:2188:7: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access((char*)inst->pszFileName, R_OK) != 0) {
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:704:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(cs.stateFile, F_OK|R_OK) == -1 && errno == ENOENT) {
data/rsyslog-8.2010.0/plugins/imklog/imklog.c:253:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf((char*)msgBuf, sizeof(msgBuf), fmt, ap);
data/rsyslog-8.2010.0/plugins/imklog/imklog.h:63:93: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
rsRetVal imklogLogIntMsg(syslog_pri_t priority, const char *fmt, ...) __attribute__((format(printf,2, 3)));
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:783:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char *) szHname, (char *) szIP);
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:786:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char *) szHname, (char *) szIP);
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:1042:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char*)pThis->pMsg_save, (char*) pThis->pMsg+pThis->iCurrLine);
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:1048:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char*)pThis->pMsg, (char*)pThis->pMsg_save);
data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c:184:35: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
static void __attribute__((format(printf, 1, 2)))
data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c:197:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(pszWriteBuf, sizeof(pszWriteBuf), fmt, ap);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:713:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(address, CurrentCharPtr);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:717:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(address, CurrentCharPtr);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:779:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(caddress, address);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1030:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(address, val);
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:398:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, (char *)pData->fieldList.name[i]);
data/rsyslog-8.2010.0/plugins/mmnormalize/mmnormalize.c:361:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buffer, tStr);
data/rsyslog-8.2010.0/plugins/mmnormalize/mmnormalize.c:366:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buffer, tStr);
data/rsyslog-8.2010.0/plugins/omgssapi/omgssapi.c:215:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(out_tok.value, base);
data/rsyslog-8.2010.0/plugins/omgssapi/omgssapi.c:217:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(out_tok.value, pData->f_hname);
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:173:35: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
static void __attribute__((format(printf, 1, 2)))
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:185:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(pszWriteBuf, sizeof(pszWriteBuf), fmt, ap);
data/rsyslog-8.2010.0/runtime/datetime.c:1307:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(pBuf, "%s %2d %.2d:%.2d:%.2d",
data/rsyslog-8.2010.0/runtime/debug.c:259:16: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
lenWriteBuf = vsnprintf(pszWriteBuf, sizeof(pszWriteBuf), fmt, ap);
data/rsyslog-8.2010.0/runtime/debug.c:294:16: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
lenWriteBuf = vsnprintf(pszWriteBuf, sizeof(pszWriteBuf), fmt, ap);
data/rsyslog-8.2010.0/runtime/debug.h:62:97: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void r_dbgoprint(const char *srcname, obj_t *pObj, const char *fmt, ...) __attribute__((format(printf, 3, 4)));
data/rsyslog-8.2010.0/runtime/debug.h:63:84: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void r_dbgprintf(const char *srcname, const char *fmt, ...) __attribute__((format(printf, 2, 3)));
data/rsyslog-8.2010.0/runtime/dynstats.c:132:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char*)metric_name_buff, (char*)name);
data/rsyslog-8.2010.0/runtime/errmsg.c:144:28: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void __attribute__((format(printf, 3, 4)))
data/rsyslog-8.2010.0/runtime/errmsg.c:152:11: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
lenBuf = vsnprintf(buf, sizeof(buf), fmt, ap);
data/rsyslog-8.2010.0/runtime/errmsg.c:172:28: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void __attribute__((format(printf, 4, 5)))
data/rsyslog-8.2010.0/runtime/errmsg.c:180:11: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
lenBuf = vsnprintf(buf, sizeof(buf), fmt, ap);
data/rsyslog-8.2010.0/runtime/errmsg.h:33:28: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void __attribute__((format(printf, 3, 4))) LogError(const int iErrno, const int iErrCode, const char *fmt, ... );
data/rsyslog-8.2010.0/runtime/errmsg.h:34:28: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void __attribute__((format(printf, 4, 5)))
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:125:35: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
static void __attribute__((format(printf, 2, 3)))
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:132:6: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
r = vsnprintf(buf, sizeof (buf), errmsg, args);
data/rsyslog-8.2010.0/runtime/lookup.c:1009:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(reloader_thd_name, reloader_prefix);
data/rsyslog-8.2010.0/runtime/lookup.c:1010:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(reloader_thd_name + strlen(reloader_prefix), (char*) lu->name);
data/rsyslog-8.2010.0/runtime/net.c:1174:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(hnbuf, EMPTY_HOSTNAME_REPLACEMENT);
data/rsyslog-8.2010.0/runtime/net.c:1180:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(hnbuf, EMPTY_HOSTNAME_REPLACEMENT);
data/rsyslog-8.2010.0/runtime/rsconf.c:398:5: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
if(vsnprintf(errBuf, sizeof(errBuf), fmt, ap) == sizeof(errBuf))
data/rsyslog-8.2010.0/runtime/rsconf.c:413:5: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
if(vsnprintf(errBuf, sizeof(errBuf), fmt, ap) == sizeof(errBuf))
data/rsyslog-8.2010.0/runtime/srutils.c:322:2: [4] (shell) execlp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execlp((char*)program, (char*) program, (char*)arg, NULL);
data/rsyslog-8.2010.0/runtime/srutils.c:383:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(szFmtBuf, sizeof(szFmtBuf), ".%%0%d" PRId64, lNumDigits);
data/rsyslog-8.2010.0/runtime/srutils.c:384:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
lenBuf = snprintf((char*)szBuf, sizeof(szBuf), szFmtBuf, lNum);
data/rsyslog-8.2010.0/runtime/srutils.c:386:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
lenBuf = snprintf((char*)szBuf, sizeof(szBuf), ".%" PRId64, lNum);
data/rsyslog-8.2010.0/runtime/statsobj.c:495:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(fmtbuf, sizeof(fmtbuf),
data/rsyslog-8.2010.0/runtime/stringbuf.c:116:35: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
va_list ap) __attribute__((format(printf,2, 0)));
data/rsyslog-8.2010.0/runtime/stringbuf.c:126:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = vsnprintf(NULL, 0, (char*)fmt, ap2);
data/rsyslog-8.2010.0/runtime/stringbuf.c:142:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf((char*)pThis->pBuf, len, (char*)fmt, ap);
data/rsyslog-8.2010.0/runtime/stringbuf.h:55:97: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
rsRetVal rsCStrConstructFromszStrf(cstr_t **ppThis, const char *fmt, ...) __attribute__((format(printf,2, 3)));
data/rsyslog-8.2010.0/runtime/stringbuf.h:119:86: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
rsRetVal rsCStrAppendStrf(cstr_t *pThis, const char *fmt, ...) __attribute__((format(printf,2, 3)));
data/rsyslog-8.2010.0/runtime/tcpsrv.c:146:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char*)pEntry->dfltTZ, (char*)pThis->dfltTZ);
data/rsyslog-8.2010.0/tests/chkseq.c:133:15: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
scanfOK = sscanf(ioBuf, "%d,%d,%s\n", &val, &edLen, edBuf) == 3 ? 1 : 0;
data/rsyslog-8.2010.0/tests/chkseq.c:197:17: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
scanfOK = sscanf(ioBuf, "%d,%d,%s\n", &val,
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:142:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, "%02d.%03d " f, (int)(dbgtv.tv_sec % 60), \
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:154:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, "%02d.%03d " f, (int)(dbgtv.tv_sec % 60), \
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:166:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, "%02d.%03d " f, (int)(dbgtv.tv_sec % 60), \
data/rsyslog-8.2010.0/tests/tcpflood.c:276:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(fmt);
data/rsyslog-8.2010.0/tests/uxsockrcvr.c:154:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(addr.sun_path, sockName);
data/rsyslog-8.2010.0/tools/omfile.c:565:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access((char*)newFileName, F_OK) != 0) {
data/rsyslog-8.2010.0/tools/omusrmsg.c:263:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(p, _PATH_DEV);
data/rsyslog-8.2010.0/tools/rsyslogd.c:1390:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
(access("/etc/localtime", R_OK) == 0) ? "TZ=/etc/localtime" : "TZ=UTC";
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:231:2: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom(now);
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:240:63: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return fb->graceful_interval + fb->return_check_interval * random() / RAND_MAX;
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:246:70: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return fb->half_return_check_interval + fb->return_check_interval * random() / RAND_MAX;
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:901:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((env_var = getenv("OMRABBITMQ_TEST")) != NULL)
data/rsyslog-8.2010.0/grammar/lexer.c:1887:26: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *envval = getenv(envvar);
data/rsyslog-8.2010.0/grammar/lexer.c:1910:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *envval = getenv(envvar);
data/rsyslog-8.2010.0/grammar/rainerscript.c:602:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
realval = getenv(param+6);
data/rsyslog-8.2010.0/grammar/rainerscript.c:1954:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
envvar = getenv(str);
data/rsyslog-8.2010.0/plugins/imdiag/imdiag.c:836:36: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *ci_max_empty_checks = getenv("CI_SHUTDOWN_QUEUE_EMPTY_CHECKS");
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:855:21: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
CHKmalloc(target = realpath(symlink, NULL));
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:625:11: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
unsigned random;
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:637:36: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return (unsigned)shiftIP_subst + random;
data/rsyslog-8.2010.0/plugins/omtesting/omtesting.c:360:2: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(time(NULL));
data/rsyslog-8.2010.0/runtime/debug.c:368:25: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if((pszOpts = (uchar*) getenv("RSYSLOG_DEBUG")) != NULL) {
data/rsyslog-8.2010.0/runtime/debug.c:448:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
dbgto2stderr = getenv("RSYSLOG_DEBUG_TIMEOUTS_TO_STDERR");
data/rsyslog-8.2010.0/runtime/debug.c:454:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
pszAltDbgFileName = getenv("RSYSLOG_DEBUGLOG");
data/rsyslog-8.2010.0/runtime/modules.c:1477:26: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if((pModPath = (uchar*) getenv("RSYSLOG_MODDIR")) != NULL) {
data/rsyslog-8.2010.0/runtime/srutils.c:708:2: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom((unsigned int) x);
data/rsyslog-8.2010.0/runtime/srutils.c:713:9: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return random();
data/rsyslog-8.2010.0/tests/chkseq.c:72:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "i:e:f:ds:vm:ET")) != EOF) {
data/rsyslog-8.2010.0/tests/diagtalker.c:150:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "t:p:")) != -1) {
data/rsyslog-8.2010.0/tests/inputfilegen.c:43:11: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((c=getopt(argc, argv, "m:M:i:d:s:")) != -1) {
data/rsyslog-8.2010.0/tests/mangle_qi.c:91:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "dq:")) != -1) {
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:549:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "f:b:w:d")) != -1) {
data/rsyslog-8.2010.0/tests/minitcpsrvr.c:66:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "t:p:f:s:")) != -1) {
data/rsyslog-8.2010.0/tests/randomgen.c:109:2: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(time(NULL)); /* seed is good enough for our needs */
data/rsyslog-8.2010.0/tests/randomgen.c:111:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "f:s:u")) != -1) {
data/rsyslog-8.2010.0/tests/syslog_caller.c:90:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "m:s:C:f:")) != -1) {
data/rsyslog-8.2010.0/tests/syslog_caller.c:92:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "m:s:")) != -1) {
data/rsyslog-8.2010.0/tests/tcpflood.c:1586:2: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(time(NULL)); /* seed is good enough for our needs */
data/rsyslog-8.2010.0/tests/tcpflood.c:1598:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "a:Bb:c:C:d:DeE:f:F:i:I:j:k:l:L:m:M:n:OP:p:rR:sS:t:T:u:vW:x:XyYz:Z:")) != -1) {
data/rsyslog-8.2010.0/tests/tcpflood.c:1737:29: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *const ci_env = getenv("CI");
data/rsyslog-8.2010.0/tests/uxsockrcvr.c:106:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt(argc, argv, "s:o:lt:")) != EOF) {
data/rsyslog-8.2010.0/tools/logctl.c:206:17: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((iarg = getopt_long (argc, argv, "l:s:r:k:y:f:u:m:",
data/rsyslog-8.2010.0/tools/rscryutil.c:462:9: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
opt = getopt_long(argc, argv, "a:dfk:K:m:p:r:vVW:", long_options, NULL);
data/rsyslog-8.2010.0/tools/rsyslogd.c:368:25: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *lstnPid = getenv("LISTEN_PID");
data/rsyslog-8.2010.0/tools/rsyslogd.c:1313:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((ch = getopt(argc, argv, "46ACDdf:hi:M:nN:o:qQS:T:u:vwxR")) != EOF) {
data/rsyslog-8.2010.0/tools/rsyslogd.c:1315:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((ch = getopt(argc, argv, "46ACDdf:hi:M:nN:o:qQS:T:u:vwx")) != EOF) {
data/rsyslog-8.2010.0/tools/rsyslogd.c:1388:5: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if(getenv("TZ") == NULL) {
data/rsyslog-8.2010.0/tools/rsyslogd.c:1494:7: [3] (misc) chroot:
chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
Make sure the program immediately chdir("/"), closes file descriptors, and
drops root privileges, and that all necessary files (and no more!) are in
the new root.
if(chroot(arg) != 0) {
data/rsyslog-8.2010.0/tools/rsyslogd.c:2139:31: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *const log_dflt = getenv("RSYSLOG_DFLT_LOG_INTERNAL");
data/rsyslog-8.2010.0/action.c:694:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filebuf[1024];
data/rsyslog-8.2010.0/action.c:705:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(pThis->pszExternalStateFile, O_RDONLY|O_CLOEXEC);
data/rsyslog-8.2010.0/action.c:792:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[32];
data/rsyslog-8.2010.0/action.c:1428:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pThis->fdErrFile = open(pThis->pszErrFile,
data/rsyslog-8.2010.0/action.c:1444:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tplname[20];
data/rsyslog-8.2010.0/action.c:1492:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&oneParamSet, &actParam(wrkrInfo->p.tx.iparams, pThis->iNumTpls, i, 0),
data/rsyslog-8.2010.0/action.c:1496:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_iparams + (*new_nMsgs * pThis->iNumTpls), &oneParamSet,
data/rsyslog-8.2010.0/action.c:2098:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errMsg[512];
data/rsyslog-8.2010.0/compat/getifaddrs.c:232:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_addr, &ifrp->ifr_addr,
data/rsyslog-8.2010.0/compat/getifaddrs.c:243:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_netmask, &ifrl.ifr_addr,
data/rsyslog-8.2010.0/compat/getifaddrs.c:252:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_netmask, &ifrl6.ifr_Addr,
data/rsyslog-8.2010.0/compat/getifaddrs.c:265:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_dstaddr, &ifrl.ifr_addr,
data/rsyslog-8.2010.0/compat/getifaddrs.c:274:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_dstaddr, &ifrl6.ifr_Addr,
data/rsyslog-8.2010.0/compat/getifaddrs.c:285:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_broadaddr, &ifrl.ifr_addr,
data/rsyslog-8.2010.0/compat/getifaddrs.c:435:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_addr, &lifrp->lifr_addr,
data/rsyslog-8.2010.0/compat/getifaddrs.c:444:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_netmask, &lifrl.lifr_addr,
data/rsyslog-8.2010.0/compat/getifaddrs.c:455:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_dstaddr, &lifrl.lifr_addr,
data/rsyslog-8.2010.0/compat/getifaddrs.c:464:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(curr->ifa_broadaddr, &lifrl.lifr_addr,
data/rsyslog-8.2010.0/compat/strndup.c:40:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_s, s, n);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:379:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fixedModConf.msg_buffer, FILE_TOO_LARGE, FILE_TOO_LARGE_LEN);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:381:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fixedModConf.msg_buffer + FILE_TOO_LARGE_LEN, fpath, msg_len);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:437:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pInst->fd = open(fpath,
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:443:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[512];
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:464:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pInst->pszNewFName, fpath, matches[0].rm_so);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:572:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(basen, path+i+1, lenName-i);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:578:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(basen, path, lenName);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:590:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dirn[MAXFNAME];
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:596:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[512], *s, *d;
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:601:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dirn, inst->pszFollow_glob, i);
data/rsyslog-8.2010.0/contrib/imczmq/imczmq.c:219:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char topic[256];
data/rsyslog-8.2010.0/contrib/imczmq/imczmq.c:225:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (topic, iconf->topics, delimiter - iconf->topics);
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:140:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char short_id[12];
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:347:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(mem->data[mem->len]), pdata, write_size);
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:496:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[512];
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:623:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char url[256];
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:868:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:1148:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(mem->data[mem->len]), data, realsize);
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:1575:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char url[256];
data/rsyslog-8.2010.0/contrib/imhttp/imhttp.c:517:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(connWrkr->pMsg + connWrkr->iMsg, pbuf, count);
data/rsyslog-8.2010.0/contrib/imhttp/imhttp.c:555:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(connWrkr->pMsg + connWrkr->iMsg, pbuf, count);
data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c:63:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[1024];
data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c:64:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[1024];
data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c:65:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c:161:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[2048];
data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c:164:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fklog = open(_PATH_KLOG, O_RDONLY, 0);
data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c:180:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[2048];
data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c:206:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[2048];
data/rsyslog-8.2010.0/contrib/impcap/arp_parser.c:76:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pAddrSrc[20], pAddrDst[20];
data/rsyslog-8.2010.0/contrib/impcap/arp_parser.c:83:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hwAddrSrc[20], hwAddrDst[20];
data/rsyslog-8.2010.0/contrib/impcap/arp_parser.c:137:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pAddrSrc[20], pAddrDst[20];
data/rsyslog-8.2010.0/contrib/impcap/dns_parser.c:314:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char domain_query[256] = {0};
data/rsyslog-8.2010.0/contrib/impcap/eth_parser.c:133:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ethMacSrc[20], ethMacDst[20];
data/rsyslog-8.2010.0/contrib/impcap/ftp_parser.c:91:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
if (strncmp((const char *)first_part_packet, ftp_cmds[i], strlen((const char *)ftp_cmds[i]) + 1) == 0) {
data/rsyslog-8.2010.0/contrib/impcap/ftp_parser.c:91:75: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
if (strncmp((const char *)first_part_packet, ftp_cmds[i], strlen((const char *)ftp_cmds[i]) + 1) == 0) {
data/rsyslog-8.2010.0/contrib/impcap/ftp_parser.c:136:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(packet2, packet, pktSize); // strtok changes original packet
data/rsyslog-8.2010.0/contrib/impcap/http_parser.c:145:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(http, packet, pktSize);
data/rsyslog-8.2010.0/contrib/impcap/impcap.c:206:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
inst->interface = (char *)es_str2cstr(pvals[i].val.d.estr, NULL);
data/rsyslog-8.2010.0/contrib/impcap/impcap.c:270:38: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
loadModConf->metadataContainer = (char *)es_str2cstr(pvals[i].val.d.estr, NULL);
data/rsyslog-8.2010.0/contrib/impcap/impcap.c:273:34: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
loadModConf->dataContainer = (char *)es_str2cstr(pvals[i].val.d.estr, NULL);
data/rsyslog-8.2010.0/contrib/impcap/impcap.c:363:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errBuf[PCAP_ERRBUF_SIZE];
data/rsyslog-8.2010.0/contrib/impcap/impcap.c:583:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timeStr[30];
data/rsyslog-8.2010.0/contrib/impcap/ipv4_parser.c:87:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrSrc[20], addrDst[20];
data/rsyslog-8.2010.0/contrib/impcap/ipv6_parser.c:175:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrStr[40], routeFieldName[20];
data/rsyslog-8.2010.0/contrib/impcap/ipv6_parser.c:243:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrSrc[40], addrDst[40];
data/rsyslog-8.2010.0/contrib/impcap/ipx_parser.c:76:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipxSrcNode[20], ipxDstNode[20];
data/rsyslog-8.2010.0/contrib/impcap/smb_parser.c:73:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char flagCodes[5] = "RPCS";
data/rsyslog-8.2010.0/contrib/impcap/smb_parser.c:121:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char flags[5] = {0};
data/rsyslog-8.2010.0/contrib/impcap/tcp_parser.c:55:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char flagCodes[10] = "FSRPAUECN";
data/rsyslog-8.2010.0/contrib/impcap/tcp_parser.c:89:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char flags[10] = {0};
data/rsyslog-8.2010.0/contrib/improg/improg.c:161:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/contrib/improg/improg.c:609:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&temp, &rfds, sizeof(fd_set));
data/rsyslog-8.2010.0/contrib/imtuxedoulog/imtuxedoulog.c:244:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pMsg->tTIMESTAMP.secfrac = atoi(rawMsg+7);
data/rsyslog-8.2010.0/contrib/imtuxedoulog/imtuxedoulog.c:374:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:163:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:205:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:251:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:280:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:403:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((void *)&pBody->buffer[pBody->bufferMsgSize], (const void *)field, size);
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:670:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vnamebuf[1024];
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:770:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vnamebuf[1024];
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:895:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uuidStr[40];
data/rsyslog-8.2010.0/contrib/mmdarwin/protocol.h:60:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char evt_id[16]; //!< An array containing the event ID
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:316:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errMsg[512];
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:567:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:603:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)loadModConf->caCertFile, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:618:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)loadModConf->myCertFile, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:631:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)loadModConf->myPrivKeyFile, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:652:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)loadModConf->tokenFile, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:681:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)loadModConf->fnRulebase, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:701:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)loadModConf->contRulebase, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:825:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + pWrkrData->curlRplyLen, data, size * nmemb);
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:927:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pWrkrData->pData->tokenFile, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1259:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1307:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->caCertFile, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1321:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myCertFile, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1334:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myPrivKeyFile, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1355:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->tokenFile, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1384:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->fnRulebase, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1404:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->contRulebase, "r");
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1504:46: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
if(!strcmp((char *) pData->kubernetesUrl, (char *) caches[i]->kbUrl))
data/rsyslog-8.2010.0/contrib/mmrfc5424addhmac/mmrfc5424addhmac.c:223:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hexchars[16] =
data/rsyslog-8.2010.0/contrib/mmtaghostname/mmtaghostname.c:144:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
pData->pszTag = (char *) es_str2cstr(pvals[i].val.d.estr, NULL);
data/rsyslog-8.2010.0/contrib/omamqp1/omamqp1.c:269:42: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
pn_bytes_t msg = pn_bytes(strlen((const char *)ppString[0]),
data/rsyslog-8.2010.0/contrib/omamqp1/omamqp1.c:270:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
(const char *)ppString[0]);
data/rsyslog-8.2010.0/contrib/omamqp1/omamqp1.c:823:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host_addr[300];
data/rsyslog-8.2010.0/contrib/omczmq/omczmq.c:493:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->sendTimeout = atoi(es_str2cstr(pvals[i].val.d.estr, NULL));
data/rsyslog-8.2010.0/contrib/omczmq/omczmq.c:497:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->sendTimeout = atoi(es_str2cstr(pvals[i].val.d.estr, NULL));
data/rsyslog-8.2010.0/contrib/omczmq/omczmq.c:502:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->heartbeatIvl = atoi(es_str2cstr(pvals[i].val.d.estr, NULL));
data/rsyslog-8.2010.0/contrib/omczmq/omczmq.c:506:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->heartbeatTimeout = atoi(es_str2cstr(pvals[i].val.d.estr, NULL));
data/rsyslog-8.2010.0/contrib/omczmq/omczmq.c:510:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->heartbeatTimeout = atoi(es_str2cstr(pvals[i].val.d.estr, NULL));
data/rsyslog-8.2010.0/contrib/omczmq/omczmq.c:564:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char topic[256];
data/rsyslog-8.2010.0/contrib/omczmq/omczmq.c:576:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (topic, topics, delimiter - topics);
data/rsyslog-8.2010.0/contrib/omfile-hardened/omfile-hardened.c:189:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char janitorID[128]; /* holds ID for janitor calls */
data/rsyslog-8.2010.0/contrib/omfile-hardened/omfile-hardened.c:411:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szBuf[128]; /* should be more than sufficient */
data/rsyslog-8.2010.0/contrib/omfile-hardened/omfile-hardened.c:560:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024]; /* buffer for strerr() */
data/rsyslog-8.2010.0/contrib/omfile-hardened/omfile-hardened.c:584:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open((char*) newFileName, O_WRONLY|O_APPEND|O_CREAT|O_NOCTTY|O_CLOEXEC,
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:406:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+pWrkrData->replyLen, p, size*nmemb);
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:426:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char portBuf[64];
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:712:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pData->fdErrFile = open((char*)pData->errorFile,
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:987:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pWrkrData->compressCtx.buf + pWrkrData->compressCtx.curLen,
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1080:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[CURL_ERROR_SIZE] = "";
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1504:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
nBytes = ustrlen((char *)ppString[0]) - 1 ;
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1786:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1877:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->caCertFile, "r");
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1888:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myCertFile, "r");
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1899:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myPrivKeyFile, "r");
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:94:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[1024];
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:95:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char exception[256];
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:96:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char class[256];
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:206:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char portBuf[6];
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:345:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(mem->reply[mem->replyLen]), contents, realsize);
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:823:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&amqp_props, amqp_props_msg, sizeof(amqp_basic_properties_t));
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:902:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mode_test = atoi(env_var);
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1040:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[40];
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1136:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pData->amqp_props_tpl_type, &pData->amqp_props_plaintext,
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1199:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
p = atoi(temp);
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1208:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
p = atoi(temp);
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1250:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(pWrkrData->recover_policy), &(pData->recover_policy),
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1255:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(pWrkrData->serverPrefered.s), (odd) ?
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1257:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(pWrkrData->serverBackup.s), (odd) ?
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1260:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(pWrkrData->serverPrefered.s), &pData->server1, sizeof(server_t));
data/rsyslog-8.2010.0/contrib/omtcl/omtcl.c:112:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fileName[PATH_MAX+1];
data/rsyslog-8.2010.0/contrib/omtcl/omtcl.c:113:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[4096];
data/rsyslog-8.2010.0/contrib/pmdb2diag/pmdb2diag.c:88:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/rsyslog-8.2010.0/contrib/pmsnare/pmsnare.c:109:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tabRepresentation[5];
data/rsyslog-8.2010.0/grammar/grammar.c:1129:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *yyarg[YYERROR_VERBOSE_ARGS_MAXIMUM];
data/rsyslog-8.2010.0/grammar/grammar.c:1316:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yymsgbuf[128];
data/rsyslog-8.2010.0/grammar/lexer.c:1840:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fd = open((const char*) filename, O_RDONLY)) == -1) {
data/rsyslog-8.2010.0/grammar/lexer.c:1873:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char envvar[512];
data/rsyslog-8.2010.0/grammar/lexer.c:2653:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
{ cnfPrintToken(yytext); yylineno = atoi(yytext) - 1; }
data/rsyslog-8.2010.0/grammar/lexer.c:4049:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp = fopen(fname, "r")) == NULL) {
data/rsyslog-8.2010.0/grammar/rainerscript.c:92:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char tokbuf[512];
data/rsyslog-8.2010.0/grammar/rainerscript.c:436:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ln[10240];
data/rsyslog-8.2010.0/grammar/rainerscript.c:437:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/rsyslog-8.2010.0/grammar/rainerscript.c:451:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
lenBuf = sprintf(buf, "PreprocFileLineNumber(%d)\n", lineno);
data/rsyslog-8.2010.0/grammar/rainerscript.c:960:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringBuf[2048]; /* 2048 has been proven to be large enough */
data/rsyslog-8.2010.0/grammar/rainerscript.c:1538:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, pFld, iLen);
data/rsyslog-8.2010.0/grammar/rainerscript.c:1586:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, pFld, iLen);
data/rsyslog-8.2010.0/grammar/rainerscript.c:2161:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[18];
data/rsyslog-8.2010.0/grammar/rainerscript.c:2229:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(resBuf, wrapper, lWrapper);
data/rsyslog-8.2010.0/grammar/rainerscript.c:2230:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(resBuf + lWrapper, src, lSrc);
data/rsyslog-8.2010.0/grammar/rainerscript.c:2231:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(resBuf + lSrc + lWrapper, wrapper, lWrapper);
data/rsyslog-8.2010.0/grammar/rainerscript.c:2437:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[resMax];
data/rsyslog-8.2010.0/grammar/rainerscript.c:2699:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[16];
data/rsyslog-8.2010.0/grammar/rainerscript.c:3472:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuff[512];
data/rsyslog-8.2010.0/grammar/rainerscript.c:4463:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[256];
data/rsyslog-8.2010.0/grammar/rainerscript.c:4930:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(stmt->d.s_prifilt.pmask, prifilt->pmask,
data/rsyslog-8.2010.0/grammar/rainerscript.c:4994:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(stmt, subroot, sizeof(struct cnfstmt));
data/rsyslog-8.2010.0/grammar/rainerscript.c:5260:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/grammar/rainerscript.c:5261:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nameBuf[MAXFNAME+1];
data/rsyslog-8.2010.0/grammar/rainerscript.c:5262:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cwdBuf[MAXFNAME+1];
data/rsyslog-8.2010.0/grammar/rainerscript.c:5292:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(cwdBuf, "??getcwd() failed??");
data/rsyslog-8.2010.0/grammar/rainerscript.c:5311:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(cwdBuf, "??getcwd() failed??");
data/rsyslog-8.2010.0/outchannel.c:221:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pOch->pszName, pName, pOch->iLenName + 1);
data/rsyslog-8.2010.0/parse.c:433:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((*pIP)->addr.NetAddr, res->ai_addr, res->ai_addrlen);
data/rsyslog-8.2010.0/parse.c:469:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((*pIP)->addr.NetAddr, res->ai_addr, res->ai_addrlen);
data/rsyslog-8.2010.0/plugins/fmhttp/fmhttp.c:72:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+curlData->replyLen, (char*)ptr, size*nmemb);
data/rsyslog-8.2010.0/plugins/imdiag/imdiag.c:284:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
iFrom = atoi((char*)wordBuf);
data/rsyslog-8.2010.0/plugins/imdiag/imdiag.c:286:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nMsgs = atoi((char*)wordBuf);
data/rsyslog-8.2010.0/plugins/imdiag/imdiag.c:503:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pszMsg, pRcv, iLenMsg);
data/rsyslog-8.2010.0/plugins/imdiag/imdiag.c:838:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int n = atoi(ci_max_empty_checks);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:199:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file_id[FILE_ID_HASH_SIZE]; /* file id for this entry, once we could obtain it */
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:200:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file_id_prev[FILE_ID_HASH_SIZE]; /* previous file id for this entry, set if changed */
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:424:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:713:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char basename[MAXFNAME];
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:728:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(name, O_RDONLY | O_CLOEXEC);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:868:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parent[MAXFNAME];
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:870:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(parent, chld->active->name, idx);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1149:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ourPath, toFind, i);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1155:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(name, toFind+pathIdx, len);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1280:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_id[FILE_ID_HASH_SIZE];
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1284:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filedata[FILE_ID_SIZE];
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1436:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open((char*)pszSFNam, O_CLOEXEC | O_NOCTTY | O_RDONLY, 0600);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1443:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open((char*)pszSFNam, O_CLOEXEC | O_NOCTTY | O_RDONLY, 0600);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1544:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
const int fd = open(act->name, O_RDONLY | O_CLOEXEC);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1753:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(basen, path+i+1, lenName-i);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1993:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuff[512];
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:2002:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuff[512];
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:2409:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iobuf[8192];
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:2657:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
const int fd = open(fn, O_CLOEXEC | O_NOCTTY | O_WRONLY | O_CREAT | O_TRUNC, 0600);
data/rsyslog-8.2010.0/plugins/imgssapi/imgssapi.c:628:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, msg_buf.value, *piLenRcvd);
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:240:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, in, len);
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:417:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
severity = ((char *)get)[9] - '0';
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:433:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
facility = ((char *)get)[16] - '0';
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:436:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
facility += ((char *)get)[17] - '0';
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:522:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_sf[MAXFNAME];
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:554:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
sf = fopen(tmp_sf, "wb");
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:714:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((r_sf = fopen(cs.stateFile, "rb")) != NULL) {
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:715:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char readCursor[128 + 1];
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:1024:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
cs.stateFile = (char *)es_str2cstr(pvals[i].val.d.estr, NULL);
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:1047:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
cs.usePid = (char *)es_str2cstr(pvals[i].val.d.estr, NULL);
data/rsyslog-8.2010.0/plugins/imkafka/imkafka.c:323:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char kafkaErrMsg[1024];
data/rsyslog-8.2010.0/plugins/imklog/bsd.c:169:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[2048];
data/rsyslog-8.2010.0/plugins/imklog/bsd.c:172:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fklog = open((char*)GetPath(pModConf), O_RDONLY, 0);
data/rsyslog-8.2010.0/plugins/imklog/bsd.c:201:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[2048];
data/rsyslog-8.2010.0/plugins/imklog/bsd.c:229:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[2048];
data/rsyslog-8.2010.0/plugins/impstats/impstats.c:161:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char proc_path[MAXFNAME];
data/rsyslog-8.2010.0/plugins/impstats/impstats.c:234:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[32];
data/rsyslog-8.2010.0/plugins/impstats/impstats.c:242:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
runModConf->logfd = open(runModConf->logfile, O_WRONLY|O_CREAT|O_APPEND|O_CLOEXEC, S_IRUSR|S_IWUSR);
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:674:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp = fopen((const char*)pSrv->pszLstnPortFileName, "w+")) == NULL) {
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:760:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy((char *) szHname, "???");
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:761:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy((char *) szIP, "???");
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:1222:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pMsg + pThis->iMsg, *buff, octatesToCopy);
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:1938:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rcvBuf[128*1024];
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:2279:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuff[512];
data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c:188:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszWriteBuf[32*1024+1]; //this function has to be able to
data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c:600:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)inst->caCertFile, "r");
data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c:602:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c:612:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)inst->myCertFile, "r");
data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c:614:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c:624:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)inst->myPrivKeyFile, "r");
data/rsyslog-8.2010.0/plugins/imrelp/imrelp.c:626:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/imsolaris/imsolaris.c:189:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/imsolaris/imsolaris.c:245:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c:147:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[ERRMSG_LEN+1];
data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c:210:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[ERRMSG_LEN+1];
data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c:221:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((door = open(DoorFileName, O_RDONLY)) >= 0) {
data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c:231:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(line, "syslogd pid %ld"
data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c:306:14: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
(void) strcat(line, " - fatal");
data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c:333:13: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
(void) strcat(line, " - fatal");
data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c:352:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(line, "door_create() failed - fatal");
data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c:396:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errBuf[1024];
data/rsyslog-8.2010.0/plugins/imsolaris/sun_cddl.c:398:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fd = open(name, O_RDONLY)) < 0) {
data/rsyslog-8.2010.0/plugins/imudp/imudp.c:418:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(frominetPrev, frominet, socklen); /* update cache indicator */
data/rsyslog-8.2010.0/plugins/imudp/imudp.c:494:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/imudp/imudp.c:583:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/imudp/imudp.c:770:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:630:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pinfobuf[512];
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:653:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char procName[256]; /* enough for any sane process name */
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:655:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen(procName, "r");
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:698:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bufPID[16];
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:715:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bufTAG + i, bufPID, lenPID);
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:730:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[1024];
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:738:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fd = open(namebuf, O_RDONLY)) == -1) {
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:771:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[1024];
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:925:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pmsgbuf, pRcv, lenRcv);
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:926:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pmsgbuf+lenRcv, " @[", 3);
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:931:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pmsgbuf+toffs, propBuf, lenProp);
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:935:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pmsgbuf+toffs, " _COMM=", 7);
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:936:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pmsgbuf+toffs+7, propBuf, lenProp);
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:940:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pmsgbuf+toffs, " _EXE=", 6);
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:941:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pmsgbuf+toffs+6, propBuf, lenProp);
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:945:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pmsgbuf+toffs, " _CMDLINE=", 10);
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:1067:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:1132:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:62:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ip_high[16];
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:63:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ip_low[16];
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:761:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char address[16];
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:762:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char caddress[16];
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:787:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*msg, msgcpy, *idx);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:789:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*msg + *idx, caddress, caddresslen);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:792:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*msg + *idx, msgcpy + offset, oldLen - offset);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1081:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char address[40];
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1099:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*msg, msgcpy, *idx);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1101:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*msg + *idx, address, caddresslen);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1104:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*msg + *idx, msgcpy + offset, oldLen - offset);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1271:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char address[46];
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1290:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*msg, msgcpy, *idx);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1292:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*msg + *idx, address, caddresslen);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1295:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*msg + *idx, msgcpy + offset, oldLen - offset);
data/rsyslog-8.2010.0/plugins/mmaudit/mmaudit.c:176:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[1024];
data/rsyslog-8.2010.0/plugins/mmaudit/mmaudit.c:177:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[1024];
data/rsyslog-8.2010.0/plugins/mmaudit/mmaudit.c:213:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char auditID[1024];
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:269:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vnamebuf[1024];
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:302:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempbuf[strlen(buf)];
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:314:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tempbuf, "},");
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:325:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*membuf, tempbuf, strlen(tempbuf));
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:397:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[(strlen((char *)(pData->fieldList.name[i])))+1];
data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c:172:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c:179:25: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pWrkrData->fdOutput = open((char*)pWrkrData->pData->outputFileName,
data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c:212:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c:225:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(pWrkrData->respBuf, "{}\n");
data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c:238:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(pWrkrData->respBuf, "{}\n");
data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c:313:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[1024];
data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c:314:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[2048];
data/rsyslog-8.2010.0/plugins/mmsnmptrapd/mmsnmptrapd.c:292:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sevCode = atoi((char*) pszSevCode);
data/rsyslog-8.2010.0/plugins/mmsnmptrapd/mmsnmptrapd.c:347:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->pszTagName, cs.pszTagName, lenTag);
data/rsyslog-8.2010.0/plugins/mmsnmptrapd/mmsnmptrapd.c:348:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->pszTagName+lenTag, ":", 2);
data/rsyslog-8.2010.0/plugins/mmsnmptrapd/mmsnmptrapd.c:351:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->pszTagID, cs.pszTagName, lenTag);
data/rsyslog-8.2010.0/plugins/mmsnmptrapd/mmsnmptrapd.c:352:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->pszTagID+lenTag, "/", 2);
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:249:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[CURL_ERROR_SIZE] = "";
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:339:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pData->fdErrFile = open((char*)pData->errorFile,
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:489:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[CURL_ERROR_SIZE] = "";
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:647:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+pWrkrData->replyLen, p, size*nmemb);
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:766:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char portBuf[64];
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:819:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:859:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->caCertFile, "r");
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:870:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myCertFile, "r");
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:881:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myPrivKeyFile, "r");
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:411:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pWrkrData->reply+pWrkrData->replyLen, p, size_add);
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:430:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char portBuf[64];
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:831:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*singleRequest,start,req - start);
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1448:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pData->fdErrFile = open((char*)pData->errorFile,
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1565:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[CURL_ERROR_SIZE] = "";
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1839:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1905:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->caCertFile, "r");
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1916:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myCertFile, "r");
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1927:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myPrivKeyFile, "r");
data/rsyslog-8.2010.0/plugins/omgssapi/omgssapi.c:585:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->port, tmp, i);
data/rsyslog-8.2010.0/plugins/omhdfs/omhdfs.c:216:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pszWork, pFile->name, len);
data/rsyslog-8.2010.0/plugins/omhdfs/omhdfs.c:369:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char*) pData->ioBuf + pData->offsBuf, buf, len);
data/rsyslog-8.2010.0/plugins/omhdfs/omhdfs.c:376:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char*) pData->ioBuf + pData->offsBuf, buf, len);
data/rsyslog-8.2010.0/plugins/omjournal/omjournal.c:226:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, key, key_len);
data/rsyslog-8.2010.0/plugins/omjournal/omjournal.c:227:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + key_len, "=", 1);
data/rsyslog-8.2010.0/plugins/omjournal/omjournal.c:228:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + key_len + 1, val, val_len+1);
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:340:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(etry->key, key, keylen);
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:350:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(etry->payload, msg, msglen);
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:429:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[MAX_ERRMSG];
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:644:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pData->fdErrFile = open((char*)pData->errorFile,
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:689:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pData->fdStatsFile = open((char*)pData->statsFile,
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:777:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ttMsgTimestamp = atoi((char*)msgTimestamp); /* Convert timestamp into int */
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1014:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1015:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char handler_name[1024] = "unknown";
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1228:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[MAX_ERRMSG];
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1281:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char kafkaErrMsg[1024];
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1400:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fdMsgFile = open((char*)pData->failedMsgFile,
data/rsyslog-8.2010.0/plugins/omlibdbi/omlibdbi.c:220:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errMsg[1024];
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:95:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char RcvBuf[1024]; /* buffer for receiving server responses */
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:370:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:458:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szBuf[2048];
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:540:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/rsyslog-8.2010.0/plugins/ommongodb/ommongodb.c:462:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[sizeof(size_t) * CHAR_BIT + 1];
data/rsyslog-8.2010.0/plugins/ommongodb/ommongodb.c:633:47: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->allowed_error_codes[j] = (unsigned)atoi(str);
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:59:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbsrv[MAXHOSTNAMELEN+1]; /* IP or hostname of DB server*/
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:61:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbname[_DB_MAXDBLEN+1]; /* DB name */
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:62:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbuid[_DB_MAXUNAMELEN+1]; /* DB user */
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:63:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbpwd[_DB_MAXPWDLEN+1]; /* DB user's password */
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:167:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errMsg[512];
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:210:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen((char*)pData->configfile,"r");
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:213:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[512];
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:216:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[512];
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:372:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->dbsrv, cstr, len+1);
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:384:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->dbname, cstr, len+1);
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:394:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->dbuid, cstr, len+1);
data/rsyslog-8.2010.0/plugins/ommysql/ommysql.c:404:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->dbpwd, cstr, len+1);
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:62:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char srv[MAXHOSTNAMELEN+1]; /* IP or hostname of DB server*/
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:63:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbname[_DB_MAXDBLEN+1]; /* DB name */
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:64:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char user[_DB_MAXUNAMELEN+1]; /* DB user */
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:65:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pass[_DB_MAXPWDLEN+1]; /* DB user's password */
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:162:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errMsg[512];
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:208:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char port[6];
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:359:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(pData->user, "postgres");
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:360:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(pData->pass, "postgres");
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:388:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->srv, cstr, len+1);
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:408:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->dbname, cstr, len+1);
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:419:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->user, cstr, len+1);
data/rsyslog-8.2010.0/plugins/ompgsql/ompgsql.c:430:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->pass, cstr, len+1);
data/rsyslog-8.2010.0/plugins/omprog/omprog.c:158:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/omprog/omprog.c:167:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fdOutput = open("/dev/null", O_WRONLY);
data/rsyslog-8.2010.0/plugins/omprog/omprog.c:461:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineBuf[RESPONSE_LINE_BUFFER_SIZE];
data/rsyslog-8.2010.0/plugins/omprog/omprog.c:620:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pCtx->fdFile = open((char*)pCtx->szFileName, O_WRONLY | O_APPEND | O_CREAT,
data/rsyslog-8.2010.0/plugins/omprog/omprog.c:685:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char readBuf[OUTPUT_CAPTURE_BUFFER_SIZE];
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:177:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszWriteBuf[32*1024+1]; //this function has to be able to
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:486:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->caCertFile, "r");
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:488:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:498:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myCertFile, "r");
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:500:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:510:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)pData->myPrivKeyFile, "r");
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:512:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:762:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->port, tmp, i);
data/rsyslog-8.2010.0/plugins/omsnmp/omsnmp.c:211:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szTargetAndPort[MAXHOSTNAMELEN+128]; /* work buffer for specifying a full target and port string */
data/rsyslog-8.2010.0/plugins/omsnmp/omsnmp.c:293:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pdu->enterprise, enterpriseoid, enterpriseoidlen * sizeof(oid));
data/rsyslog-8.2010.0/plugins/omsnmp/omsnmp.c:328:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char csysuptime[20];
data/rsyslog-8.2010.0/plugins/omsnmp/omsnmp.h:38:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *api_errors[-SNMPERR_MAX + 1] = {
data/rsyslog-8.2010.0/plugins/omstdout/omstdout.c:174:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szBuf[65564];
data/rsyslog-8.2010.0/plugins/omtesting/omtesting.c:289:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->iWaitSeconds = atoi((char*) szBuf);
data/rsyslog-8.2010.0/plugins/omtesting/omtesting.c:297:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->iWaitUSeconds = atoi((char*) szBuf);
data/rsyslog-8.2010.0/plugins/omtesting/omtesting.c:312:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->iFailFrequency = atoi((char*) szBuf);
data/rsyslog-8.2010.0/plugins/omtesting/omtesting.c:320:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pData->iResumeAfter = atoi((char*) szBuf);
data/rsyslog-8.2010.0/plugins/omudpspoof/omudpspoof.c:108:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[LIBNET_ERRBUF_SIZE];
data/rsyslog-8.2010.0/plugins/omuxsock/omuxsock.c:277:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/omuxsock/omuxsock.c:297:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/plugins/pmlastmsg/pmlastmsg.c:128:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pMsg->tTIMESTAMP, &pMsg->tRcvdAt, sizeof(struct syslogTime));
data/rsyslog-8.2010.0/plugins/pmnormalize/pmnormalize.c:180:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
inst->rulebase = (char *) es_str2cstr(pvals[i].val.d.estr, NULL);
data/rsyslog-8.2010.0/plugins/pmnull/pmnull.c:130:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
inst->tag = (const char *) es_str2cstr(pvals[i].val.d.estr, NULL);
data/rsyslog-8.2010.0/runtime/cfsysline.c:415:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringBuf[2048]; /* I hope this is large enough... */
data/rsyslog-8.2010.0/runtime/conf.c:162:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szName[128];
data/rsyslog-8.2010.0/runtime/datetime.c:478:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tzstring[16];
data/rsyslog-8.2010.0/runtime/datetime.c:1314:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pBuf, "%d-%.2d-%.2dT%.2d:%.2d:%.2dZ",
data/rsyslog-8.2010.0/runtime/debug.c:131:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszThrdName[64]; /* 64 is to be on the safe side, anything over 20 is bad... */
data/rsyslog-8.2010.0/runtime/debug.c:132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszWriteBuf[32*1024];
data/rsyslog-8.2010.0/runtime/debug.c:196:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pszWriteBuf + offsWriteBuf, pszMsg, lenCopy);
data/rsyslog-8.2010.0/runtime/debug.c:248:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszWriteBuf[32*1024];
data/rsyslog-8.2010.0/runtime/debug.c:282:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszWriteBuf[32*1024];
data/rsyslog-8.2010.0/runtime/debug.c:427:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((altdbg = open((char*)fn, O_WRONLY|O_CREAT|O_TRUNC|O_NOCTTY|O_CLOEXEC, S_IRUSR|S_IWUSR)) == -1) {
data/rsyslog-8.2010.0/runtime/debug.c:458:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((altdbg = open(pszAltDbgFileName, O_WRONLY|O_CREAT|O_TRUNC|O_NOCTTY|O_CLOEXEC, S_IRUSR|S_IWUSR))
data/rsyslog-8.2010.0/runtime/dnscache.c:230:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hostbuf, fqdnLower, i);
data/rsyslog-8.2010.0/runtime/dnscache.c:258:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szIP[80]; /* large enough for IPv6 */
data/rsyslog-8.2010.0/runtime/dnscache.c:259:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fqdnBuf[NI_MAXHOST];
data/rsyslog-8.2010.0/runtime/dnscache.c:332:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(szIP, "?error.obtaining.ip?");
data/rsyslog-8.2010.0/runtime/dnscache.c:365:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&etry->addr, addr, SALEN((struct sockaddr*) addr));
data/rsyslog-8.2010.0/runtime/dnscache.c:371:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(keybuf, addr, sizeof(struct sockaddr_storage));
data/rsyslog-8.2010.0/runtime/errmsg.c:91:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/rsyslog-8.2010.0/runtime/errmsg.c:92:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/errmsg.c:148:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/rsyslog-8.2010.0/runtime/errmsg.c:176:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/rsyslog-8.2010.0/runtime/errmsg.c:219:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fdOversizeMsgLog = open((char*)glblGetOversizeMsgErrorFile(),
data/rsyslog-8.2010.0/runtime/glbl.c:1241:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char varname[128];
data/rsyslog-8.2010.0/runtime/glbl.c:1265:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/glbl.c:1317:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)fn, "r");
data/rsyslog-8.2010.0/runtime/glbl.c:1329:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)fn, "r");
data/rsyslog-8.2010.0/runtime/glbl.c:1341:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen((const char*)fn, "r");
data/rsyslog-8.2010.0/runtime/glbl.c:1412:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((altdbg = open(pszAltDbgFileName, O_WRONLY|O_CREAT|O_TRUNC|O_NOCTTY
data/rsyslog-8.2010.0/runtime/gss-misc.c:72:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/rsyslog-8.2010.0/runtime/gss-misc.c:173:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char lenbuf[4] = "xxx"; // initialized to make clang static analyzer happy
data/rsyslog-8.2010.0/runtime/gss-misc.c:217:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char lenbuf[4];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:127:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:169:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[4096];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:170:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ksi_errbuf[4096];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:231:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:244:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[4];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:290:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[8];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:529:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open((char*)ksi->statefilename, O_RDONLY|O_NOCTTY|O_CLOEXEC, 0600);
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:566:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open((char*)ksi->statefilename,
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:578:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sf.hdr, "KSISTAT10", 9);
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:645:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(path, O_RDWR | O_APPEND | O_NOCTTY | O_CLOEXEC, 0600);
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:647:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(path, O_RDWR | O_CREAT | O_NOCTTY | O_CLOEXEC, mode);
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:816:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(rnd_device, O_RDONLY)) >= 0) {
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:887:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_buf[32];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:916:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ctx->debugFile = fopen(ctx->debugFileName, "w");
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:941:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[MAXFNAME+1];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:1254:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buffer[0xFFFF];
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:1322:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ksi->lastLeaf, pTmp, len);
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:1362:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[KSI_BUF_SIZE];
data/rsyslog-8.2010.0/runtime/lib_ksils12.h:141:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char lastLeaf[KSI_MAX_IMPRINT_LEN]; /* last leaf hash (maybe of previous block)
data/rsyslog-8.2010.0/runtime/lib_ksils12.h:164:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdr[9]; /* must be "KSISTAT10" */
data/rsyslog-8.2010.0/runtime/libgcry.c:128:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
gf->fd = open((char*)gf->eiName, O_RDONLY|O_NOCTTY|O_CLOEXEC);
data/rsyslog-8.2010.0/runtime/libgcry.c:179:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdrBuf[128];
data/rsyslog-8.2010.0/runtime/libgcry.c:241:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rectype[EIF_MAX_RECTYPE_LEN+1];
data/rsyslog-8.2010.0/runtime/libgcry.c:242:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[EIF_MAX_VALUE_LEN+1];
data/rsyslog-8.2010.0/runtime/libgcry.c:283:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rectype[EIF_MAX_RECTYPE_LEN+1];
data/rsyslog-8.2010.0/runtime/libgcry.c:284:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[EIF_MAX_VALUE_LEN+1];
data/rsyslog-8.2010.0/runtime/libgcry.c:306:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
gf->fd = open((char*)gf->eiName,
data/rsyslog-8.2010.0/runtime/libgcry.c:313:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
gf->fd = open((char*)gf->eiName,
data/rsyslog-8.2010.0/runtime/libgcry.c:333:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hexchars[16] =
data/rsyslog-8.2010.0/runtime/libgcry.c:336:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex[4096];
data/rsyslog-8.2010.0/runtime/libgcry.c:361:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char offs[21];
data/rsyslog-8.2010.0/runtime/libgcry.c:405:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[MAXFNAME+1];
data/rsyslog-8.2010.0/runtime/libgcry.c:417:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[MAXFNAME+1];
data/rsyslog-8.2010.0/runtime/libgcry.c:522:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctx->key, key, keyLen);
data/rsyslog-8.2010.0/runtime/libgcry_common.c:55:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
const int fd = open(fn, O_RDONLY);
data/rsyslog-8.2010.0/runtime/libgcry_common.c:186:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rcvBuf[64*1024];
data/rsyslog-8.2010.0/runtime/libgcry_common.c:194:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*keylen = atoi(rcvBuf);
data/rsyslog-8.2010.0/runtime/lookup.c:922:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fd = open((const char*) filename, O_RDONLY)) == -1) {
data/rsyslog-8.2010.0/runtime/modules.c:1201:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *) pPathBuf, (char *)pModDirCurr, iPathLen);
data/rsyslog-8.2010.0/runtime/modules.c:1241:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[4096];
data/rsyslog-8.2010.0/runtime/msg.c:90:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *one_digit[10] = { "0", "1", "2", "3", "4", "5", "6", "7", "8", "9" };
data/rsyslog-8.2010.0/runtime/msg.c:92:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *two_digits[100] = {
data/rsyslog-8.2010.0/runtime/msg.c:104:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *wdayNames[7] = { "Sun", "Mon", "Tue", "Wed", "Thu", "Fri", "Sat" };
data/rsyslog-8.2010.0/runtime/msg.c:107:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *daysInYear[366] = {
data/rsyslog-8.2010.0/runtime/msg.c:374:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char hexdigit[16] =
data/rsyslog-8.2010.0/runtime/msg.c:380:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *syslog_fac_names[LOG_NFACILITIES] = { "kern", "user", "mail", "daemon", "auth", "syslog", "lpr",
data/rsyslog-8.2010.0/runtime/msg.c:392:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *syslog_fac_names[LOG_NFACILITIES] = { "kern", "user", "mail", "daemon", "auth", "syslog", "lpr",
data/rsyslog-8.2010.0/runtime/msg.c:404:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *syslog_severity_names[8] = { "emerg", "alert", "crit", "err", "warning", "notice", "info",
data/rsyslog-8.2010.0/runtime/msg.c:412:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *syslog_number_names[LOG_NFACILITIES] = { "0", "1", "2", "3", "4", "5", "6", "7", "8", "9",
data/rsyslog-8.2010.0/runtime/msg.c:915:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(*ppThis)->tRcvdAt, stTime, sizeof(struct syslogTime));
data/rsyslog-8.2010.0/runtime/msg.c:916:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(*ppThis)->tTIMESTAMP, stTime, sizeof(struct syslogTime));
data/rsyslog-8.2010.0/runtime/msg.c:941:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(*ppThis)->tTIMESTAMP, &(*ppThis)->tRcvdAt, sizeof(struct syslogTime));
data/rsyslog-8.2010.0/runtime/msg.c:1149:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pNew->TAG.szBuf, pOld->TAG.szBuf, pOld->iLenTAG + 1);
data/rsyslog-8.2010.0/runtime/msg.c:1159:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pNew->szRawMsg, pOld->szRawMsg, pOld->iLenRawMsg + 1);
data/rsyslog-8.2010.0/runtime/msg.c:1168:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pNew->szHOSTNAME, pOld->szHOSTNAME, pOld->iLenHOSTNAME + 1);
data/rsyslog-8.2010.0/runtime/msg.c:1342:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pMsg->tRcvdAt, &pVar->val.vSyslogTime, sizeof(struct syslogTime));
data/rsyslog-8.2010.0/runtime/msg.c:1347:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pMsg->tTIMESTAMP, &pVar->val.vSyslogTime, sizeof(struct syslogTime));
data/rsyslog-8.2010.0/runtime/msg.c:1577:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char*)pszProgName, (char*)pszTag, i);
data/rsyslog-8.2010.0/runtime/msg.c:2465:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, pszBuf, pMsg->iLenTAG);
data/rsyslog-8.2010.0/runtime/msg.c:2735:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->rcvFrom.pfrominet, sa, sizeof(struct sockaddr_storage));
data/rsyslog-8.2010.0/runtime/msg.c:2833:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pszHOSTNAME, pszHOSTNAME, pThis->iLenHOSTNAME);
data/rsyslog-8.2010.0/runtime/msg.c:2880:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bufNew, pThis->pszRawMsg, pThis->offMSG);
data/rsyslog-8.2010.0/runtime/msg.c:2887:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pszRawMsg + pThis->offMSG, pszMSG, lenMSG);
data/rsyslog-8.2010.0/runtime/msg.c:2941:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pszRawMsg, pszRawMsg, pThis->iLenRawMsg);
data/rsyslog-8.2010.0/runtime/msg.c:2974:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pRes, syslog_fac_names[pMsg->iFacility], lenfac);
data/rsyslog-8.2010.0/runtime/msg.c:2976:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pRes+lenfac+1, syslog_severity_names[pMsg->iSeverity], lensev+1 /* for \0! */);
data/rsyslog-8.2010.0/runtime/msg.c:3012:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, two_digits[t->year/100], 2);
data/rsyslog-8.2010.0/runtime/msg.c:3013:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf+2, two_digits[t->year%100], 2);
data/rsyslog-8.2010.0/runtime/msg.c:3015:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf+5, two_digits[(int)t->month], 2);
data/rsyslog-8.2010.0/runtime/msg.c:3017:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf+8, two_digits[(int)t->day], 3);
data/rsyslog-8.2010.0/runtime/msg.c:3020:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, two_digits[t->year/100], 2);
data/rsyslog-8.2010.0/runtime/msg.c:3021:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf+2, two_digits[t->year%100], 3);
data/rsyslog-8.2010.0/runtime/msg.c:3024:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, two_digits[(int)t->month], 3);
data/rsyslog-8.2010.0/runtime/msg.c:3027:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, two_digits[(int)t->day], 3);
data/rsyslog-8.2010.0/runtime/msg.c:3030:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, two_digits[(int)t->hour], 3);
data/rsyslog-8.2010.0/runtime/msg.c:3033:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, two_digits[t->minute/30], 3);
data/rsyslog-8.2010.0/runtime/msg.c:3036:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, two_digits[t->minute/15], 3);
data/rsyslog-8.2010.0/runtime/msg.c:3039:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, two_digits[(int)t->minute], 3);
data/rsyslog-8.2010.0/runtime/msg.c:3042:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, one_digit[(int)t->wday], 2);
data/rsyslog-8.2010.0/runtime/msg.c:3270:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char numbuf[4];
data/rsyslog-8.2010.0/runtime/msg.c:3958:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, pFld, iLen);
data/rsyslog-8.2010.0/runtime/msg.c:4079:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pB, pRes + iOffs + pmatch[pTpe->data.field.iSubMatchToUse].rm_so,
data/rsyslog-8.2010.0/runtime/msg.c:4463:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pB, pRes, iLn - 1);
data/rsyslog-8.2010.0/runtime/msg.c:4773:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[MAX_VARIABLE_NAME_LEN];
data/rsyslog-8.2010.0/runtime/msg.c:4786:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(namebuf, key, array_idx_start - key);
data/rsyslog-8.2010.0/runtime/msg.c:5105:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
json_object_object_add(json, (const char *const)metaname[i], jval);
data/rsyslog-8.2010.0/runtime/msg.c:5201:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newptr, toadd, len);
data/rsyslog-8.2010.0/runtime/msg.c:5203:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newptr+pMsg->lenStrucData, toadd, len);
data/rsyslog-8.2010.0/runtime/msg.h:126:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszTimestamp3164[CONST_LEN_TIMESTAMP_3164 + 1];
data/rsyslog-8.2010.0/runtime/msg.h:127:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszTimestamp3339[CONST_LEN_TIMESTAMP_3339 + 1];
data/rsyslog-8.2010.0/runtime/msg.h:128:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszTIMESTAMP_SecFrac[7];
data/rsyslog-8.2010.0/runtime/msg.h:130:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszRcvdAt_SecFrac[7];
data/rsyslog-8.2010.0/runtime/msg.h:132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszTIMESTAMP_Unix[12]; /* almost as small as a pointer! */
data/rsyslog-8.2010.0/runtime/msg.h:133:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pszRcvdAt_Unix[12];
data/rsyslog-8.2010.0/runtime/msg.h:134:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dfltTZ[8]; /* 7 chars max, less overhead than ptr! */
data/rsyslog-8.2010.0/runtime/net.c:560:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(pEntry->allowedSender), iAllow, sizeof (struct NetAddr));
data/rsyslog-8.2010.0/runtime/net.c:716:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(allowIP.addr.NetAddr, res->ai_addr, res->ai_addrlen);
data/rsyslog-8.2010.0/runtime/net.c:739:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(SIN(allowIP.addr.NetAddr)->sin_addr.s_addr),
data/rsyslog-8.2010.0/runtime/net.c:757:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(allowIP.addr.NetAddr, res->ai_addr, res->ai_addrlen);
data/rsyslog-8.2010.0/runtime/net.c:786:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *SENDER_TEXT[4] = { "", "UDP", "TCP", "GSS" };
data/rsyslog-8.2010.0/runtime/net.c:951:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&ip, &(SIN6(pFrom))->sin6_addr, sizeof (struct in6_addr));
data/rsyslog-8.2010.0/runtime/net.c:952:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&net, &(SIN6(pAllow->addr.NetAddr))->sin6_addr, sizeof (struct in6_addr));
data/rsyslog-8.2010.0/runtime/net.c:1065:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/net.c:1169:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hnbuf[8192];
data/rsyslog-8.2010.0/runtime/net.c:1270:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/netstrms.c:362:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pStrm->Drvr, &pThis->Drvr, sizeof(pThis->Drvr));
data/rsyslog-8.2010.0/runtime/nsd_gtls.c:141:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fd = open((char*)pszFile, O_RDONLY)) == -1) {
data/rsyslog-8.2010.0/runtime/nsd_gtls.c:659:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char id[2];
data/rsyslog-8.2010.0/runtime/nsd_gtls.c:1007:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szAltName[1024]; /* this is sufficient for the DNSNAME... */
data/rsyslog-8.2010.0/runtime/nsd_gtls.c:1948:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, pThis->pszRcvBuf + pThis->ptrRcvBuf, iBytesCopy);
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:219:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szdbgdata1[256];
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:220:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szdbgdata2[256];
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:615:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pristringBuf[4096];
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:1018:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rcvBuf[NSD_OSSL_MAX_RCVBUF];
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:1377:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szDbg[255];
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:1609:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pBuf, pThis->pszRcvBuf + pThis->ptrRcvBuf, iBytesCopy);
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:1723:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pristringBuf[4096];
data/rsyslog-8.2010.0/runtime/nsd_ptcp.c:395:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pRemHostName, propGetSzStr(fqdn), prop.GetStringLen(fqdn)+1);
data/rsyslog-8.2010.0/runtime/nsd_ptcp.c:423:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/nsd_ptcp.c:439:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pNew->remAddr, &addr, sizeof(struct sockaddr_storage));
data/rsyslog-8.2010.0/runtime/nsd_ptcp.c:597:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/nsd_ptcp.c:627:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp = fopen((const char*)pszLstnPortFileName, "w+")) == NULL) {
data/rsyslog-8.2010.0/runtime/nsd_ptcp.c:722:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/nsd_ptcp.c:950:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msgbuf[1]; /* dummy */
data/rsyslog-8.2010.0/runtime/nsdpoll_ptcp.c:184:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[512];
data/rsyslog-8.2010.0/runtime/operatingstate.c:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iobuf[sizeof(STATE_CLEAN_CLOSE)];
data/rsyslog-8.2010.0/runtime/operatingstate.c:61:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
const int fd = open(fn_osf, O_RDONLY|O_LARGEFILE|O_CLOEXEC, 0);
data/rsyslog-8.2010.0/runtime/operatingstate.c:100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char newname[MAXFNAME];
data/rsyslog-8.2010.0/runtime/operatingstate.c:124:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd_osf = open(fn_osf, O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE|O_CLOEXEC,
data/rsyslog-8.2010.0/runtime/operatingstate.c:142:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024]; /* intentionally small */
data/rsyslog-8.2010.0/runtime/parser.c:57:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char hexdigit[16] =
data/rsyslog-8.2010.0/runtime/parser.c:475:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pDst, pszMsg, iSrc); /* fast copy known good */
data/rsyslog-8.2010.0/runtime/prop.c:85:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->szVal.sz, psz, len + 1);
data/rsyslog-8.2010.0/runtime/prop.c:88:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->szVal.psz, psz, len + 1);
data/rsyslog-8.2010.0/runtime/queue.c:2633:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/queue.c:2940:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pszFilePrefix, pszPrefix, iLenPrefix + 1);
data/rsyslog-8.2010.0/runtime/ratelimit.c:231:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[512]; /* 256 for FGDN adn 256 for APPNAME should be enough */
data/rsyslog-8.2010.0/runtime/ratelimit.c:312:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[256];
data/rsyslog-8.2010.0/runtime/rsconf.c:395:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errBuf[1024];
data/rsyslog-8.2010.0/runtime/rsconf.c:410:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errBuf[1024];
data/rsyslog-8.2010.0/runtime/rsconf.c:1002:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/rsyslog.c:139:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[1024];
data/rsyslog-8.2010.0/runtime/srutils.c:138:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szBuf[64]; /* sufficiently large for my lifespan and those of my children... ;) */
data/rsyslog-8.2010.0/runtime/srutils.c:181:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pNew, pOld, len + 1);
data/rsyslog-8.2010.0/runtime/srutils.c:222:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pszWork, szFile, len);
data/rsyslog-8.2010.0/runtime/srutils.c:375:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szFmtBuf[32]; /* buffer for snprintf format */
data/rsyslog-8.2010.0/runtime/srutils.c:394:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pName, pDirName, lenDirName);
data/rsyslog-8.2010.0/runtime/srutils.c:397:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pNameWork, pFName, lenFName);
data/rsyslog-8.2010.0/runtime/srutils.c:400:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pNameWork, szBuf, lenBuf);
data/rsyslog-8.2010.0/runtime/srutils.c:590:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return (atoi((char*) name));
data/rsyslog-8.2010.0/runtime/srutils.c:724:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fdURandom = open("/dev/urandom", O_RDONLY);
data/rsyslog-8.2010.0/runtime/statsobj.c:483:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtbuf[2048];
data/rsyslog-8.2010.0/runtime/stream.c:283:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pThis->fd = open((char*)pThis->pszCurrFName, iFlags | O_LARGEFILE, pThis->tOpenMode);
data/rsyslog-8.2010.0/runtime/stream.c:541:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/stream.c:1274:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pThis->fdDir = open((char*)pThis->pszDir, O_RDONLY | O_CLOEXEC | O_NOCTTY);
data/rsyslog-8.2010.0/runtime/stream.c:1276:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/stream.c:1662:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/stream.c:1729:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/stream.c:2155:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pIOBuf + pThis->iBufPtr, pBuf + iOffset, iWrite);
data/rsyslog-8.2010.0/runtime/stream.c:2273:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pszFName, pszName, iLenName + 1); /* always think about the \0! */
data/rsyslog-8.2010.0/runtime/stream.c:2299:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pszDir, pszDir, iLenDir + 1); /* always think about the \0! */
data/rsyslog-8.2010.0/runtime/stringbuf.c:104:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pBuf, sz, pThis->iStrLen);
data/rsyslog-8.2010.0/runtime/stringbuf.c:184:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pBuf, es_getBufAddr(str), pThis->iStrLen);
data/rsyslog-8.2010.0/runtime/stringbuf.c:211:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pBuf, pFrom->pBuf, pThis->iStrLen);
data/rsyslog-8.2010.0/runtime/stringbuf.c:303:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pBuf + pThis->iStrLen, psz, iStrLen);
data/rsyslog-8.2010.0/runtime/stringbuf.c:396:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pBuf, pszNew, pThis->iStrLen);
data/rsyslog-8.2010.0/runtime/stringbuf.c:604:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuff[512];
data/rsyslog-8.2010.0/runtime/tcpclt.c:83:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/tcpclt.c:95:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/runtime/tcpclt.c:192:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, msg, len); /* do not copy '\0' */
data/rsyslog-8.2010.0/runtime/tcpclt.c:204:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szLenBuf[16];
data/rsyslog-8.2010.0/runtime/tcpclt.c:238:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, szLenBuf, iLenBuf); /* header */
data/rsyslog-8.2010.0/runtime/tcpclt.c:239:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + iLenBuf, msg, len); /* message */
data/rsyslog-8.2010.0/runtime/tcpclt.c:329:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->prevMsg, msg, len);
data/rsyslog-8.2010.0/runtime/tcpsrv.c:603:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128*1024]; /* reception buffer - may hold a partial or multiple messages */
data/rsyslog-8.2010.0/runtime/wti.c:510:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pszDbgHdr, pszMsg, lenMsg + 1); /* always think about the \0! */
data/rsyslog-8.2010.0/runtime/wtp.c:625:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pThis->pszDbgHdr, pszMsg, lenMsg + 1); /* always think about the \0! */
data/rsyslog-8.2010.0/template.c:181:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param, pVal, iLenVal+1);
data/rsyslog-8.2010.0/template.c:233:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pVal, iLenVal);
data/rsyslog-8.2010.0/template.c:236:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf,
data/rsyslog-8.2010.0/template.c:659:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char Buf[64];
data/rsyslog-8.2010.0/template.c:1037:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(regex_char, p, longitud);
data/rsyslog-8.2010.0/template.c:1048:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuff[512];
data/rsyslog-8.2010.0/template.c:1251:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pTpl->pszName, pName, pTpl->iLenName + 1);
data/rsyslog-8.2010.0/template.c:1330:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char optBuf[128] = { '\0' }; /* buffer for options - should be more than enough... */
data/rsyslog-8.2010.0/template.c:2079:18: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
case T_SUBTREE: memcpy(&pTpl->subtree, &subtree, sizeof(msgPropDescr_t));
data/rsyslog-8.2010.0/tests/chkseq.c:68:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char edBuf[500*1024]; /* buffer for extra data (pretty large to be on the save side...) */
data/rsyslog-8.2010.0/tests/chkseq.c:69:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char ioBuf[sizeof(edBuf)+1024];
data/rsyslog-8.2010.0/tests/chkseq.c:81:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
increment = atoi(optarg);
data/rsyslog-8.2010.0/tests/chkseq.c:84:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
end = atoi(optarg);
data/rsyslog-8.2010.0/tests/chkseq.c:87:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
start = atoi(optarg);
data/rsyslog-8.2010.0/tests/chkseq.c:93:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lostok = atoi(optarg);
data/rsyslog-8.2010.0/tests/chkseq.c:120:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(file, "r");
data/rsyslog-8.2010.0/tests/diagtalker.c:125:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[2048];
data/rsyslog-8.2010.0/tests/diagtalker.c:154:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'p': targetPort = atoi(optarg);
data/rsyslog-8.2010.0/tests/inputfilegen.c:46:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nmsgs = atoi(optarg);
data/rsyslog-8.2010.0/tests/inputfilegen.c:52:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nmsgstart = atoi(optarg);
data/rsyslog-8.2010.0/tests/inputfilegen.c:55:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nchars = atoi(optarg);
data/rsyslog-8.2010.0/tests/inputfilegen.c:91:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *const fh = fopen(msgcntfile, "w");
data/rsyslog-8.2010.0/tests/mangle_qi.c:26:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lnbuf[4096];
data/rsyslog-8.2010.0/tests/mangle_qi.c:27:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char propname[64];
data/rsyslog-8.2010.0/tests/mangle_qi.c:107:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((qi = fopen(qifile, "r")) == NULL) {
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:182:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char txt[256];
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:213:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char AMQP091[8] = { 'A', 'M', 'Q', 'P', 0x00, 0x00, 0x09, 0x01 };
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:552:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
wait_after_accept = atoi(optarg);
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:558:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
server_behaviors = atoi(optarg);
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:563:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fpout = fopen(optarg, "w");
data/rsyslog-8.2010.0/tests/minitcpsrvr.c:59:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char wrkBuf[4096];
data/rsyslog-8.2010.0/tests/minitcpsrvr.c:69:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sleeptime = atoi(optarg);
data/rsyslog-8.2010.0/tests/minitcpsrvr.c:75:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
targetPort = atoi(optarg);
data/rsyslog-8.2010.0/tests/minitcpsrvr.c:81:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fdf = open(optarg, O_WRONLY | O_CREAT | O_TRUNC, S_IRUSR|S_IWUSR);
data/rsyslog-8.2010.0/tests/msleep.c:48:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sleepTime = atoi(argv[1]);
data/rsyslog-8.2010.0/tests/randomgen.c:68:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp = fopen(fileName, "w")) == NULL) {
data/rsyslog-8.2010.0/tests/randomgen.c:75:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
rfp = fopen("/dev/urandom", "r");
data/rsyslog-8.2010.0/tests/randomgen.c:115:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 's': fileSize = atol(optarg) * 1024;
data/rsyslog-8.2010.0/tests/syslog_caller.c:63:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "test message nbr %d, severity=%d", iRun, sev);
data/rsyslog-8.2010.0/tests/syslog_caller.c:66:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "test\n");
data/rsyslog-8.2010.0/tests/syslog_caller.c:69:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "test 1\t2");
data/rsyslog-8.2010.0/tests/syslog_caller.c:85:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msgbuf[4096];
data/rsyslog-8.2010.0/tests/syslog_caller.c:100:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sev = atoi(optarg) % 8;
data/rsyslog-8.2010.0/tests/syslog_caller.c:102:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sev = atoi(optarg);
data/rsyslog-8.2010.0/tests/syslog_caller.c:105:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'm': msgs = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:357:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char relpPort[16];
data/rsyslog-8.2010.0/tests/tcpflood.c:447:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msgBuf[128];
data/rsyslog-8.2010.0/tests/tcpflood.c:510:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
lenMsg = sprintf(msgBuf, "\r%5.5d open connections\n", i);
data/rsyslog-8.2010.0/tests/tcpflood.c:530:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msgBuf[128];
data/rsyslog-8.2010.0/tests/tcpflood.c:539:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
lenMsg = sprintf(msgBuf, "\r%5.5d", i);
data/rsyslog-8.2010.0/tests/tcpflood.c:569:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
lenMsg = sprintf(msgBuf, "\r%5.5d close connections\n", i);
data/rsyslog-8.2010.0/tests/tcpflood.c:584:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char extraData[MAX_EXTRADATA_LEN + 1];
data/rsyslog-8.2010.0/tests/tcpflood.c:585:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dynFileIDBuf[128] = "";
data/rsyslog-8.2010.0/tests/tcpflood.c:587:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char payloadLen[32];
data/rsyslog-8.2010.0/tests/tcpflood.c:655:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, payloadLen, payloadStringLen);
data/rsyslog-8.2010.0/tests/tcpflood.c:678:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_EXTRADATA_LEN + 1024];
data/rsyslog-8.2010.0/tests/tcpflood.c:679:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sendBuf[MAX_SENDBUF];
data/rsyslog-8.2010.0/tests/tcpflood.c:681:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/tests/tcpflood.c:739:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sendBuf+offsSendBuf, buf, lenBuf);
data/rsyslog-8.2010.0/tests/tcpflood.c:745:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sendBuf, buf, lenBuf);
data/rsyslog-8.2010.0/tests/tcpflood.c:1107:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char psz[256];
data/rsyslog-8.2010.0/tests/tcpflood.c:1143:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szdbgdata1[256];
data/rsyslog-8.2010.0/tests/tcpflood.c:1144:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szdbgdata2[256];
data/rsyslog-8.2010.0/tests/tcpflood.c:1422:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rcvBuf[MAX_RCVBUF];
data/rsyslog-8.2010.0/tests/tcpflood.c:1567:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
targetPort[i] = atoi(port);
data/rsyslog-8.2010.0/tests/tcpflood.c:1584:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[1024];
data/rsyslog-8.2010.0/tests/tcpflood.c:1606:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'n': numTargetPorts = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1608:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'c': numConnections = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1614:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'C': numFileIterations = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1616:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'm': numMsgsToSend = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1618:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'i': msgNum = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1624:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'd': extraDataLen = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1639:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'f': dynFileIDs = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1641:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'F': frameDelim = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1643:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'L': tlsLogLevel = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1657:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'R': numRuns = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1659:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'S': sleepBetweenRuns = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1713:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'W': waittime = atoi(optarg);
data/rsyslog-8.2010.0/tests/tcpflood.c:1777:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((dataFP = fopen(dataFile, "r")) == NULL) {
data/rsyslog-8.2010.0/tests/uxsockrcvr.c:95:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[128*1024];
data/rsyslog-8.2010.0/tests/uxsockrcvr.c:115:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp = fopen(optarg, "w")) == NULL) {
data/rsyslog-8.2010.0/tests/uxsockrcvr.c:121:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
timeout = atoi(optarg);
data/rsyslog-8.2010.0/threads.c:147:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024];
data/rsyslog-8.2010.0/tools/gethostn.c:33:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[4096]; /* this should always be sufficient ;) */
data/rsyslog-8.2010.0/tools/logctl.c:146:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[N];
data/rsyslog-8.2010.0/tools/logctl.c:215:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opt->e_sever = atoi (optarg);
data/rsyslog-8.2010.0/tools/logctl.c:220:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opt->e_ret = atoi (optarg);
data/rsyslog-8.2010.0/tools/logctl.c:237:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opt->e_skip = atoi (optarg);
data/rsyslog-8.2010.0/tools/omfile.c:186:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char janitorID[128]; /* holds ID for janitor calls */
data/rsyslog-8.2010.0/tools/omfile.c:406:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szBuf[128]; /* should be more than sufficient */
data/rsyslog-8.2010.0/tools/omfile.c:561:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errStr[1024]; /* buffer for strerr() */
data/rsyslog-8.2010.0/tools/omfile.c:585:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open((char*) newFileName, O_WRONLY|O_APPEND|O_CREAT|O_NOCTTY|O_CLOEXEC,
data/rsyslog-8.2010.0/tools/omfwd.c:711:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pWrkrData->sndBuf + pWrkrData->offsSndBuf, msg, len);
data/rsyslog-8.2010.0/tools/omfwd.c:812:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pData->originalNamespace = open("/proc/self/ns/net", O_RDONLY);
data/rsyslog-8.2010.0/tools/omfwd.c:825:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
destinationNs = open(nsPath, 0);
data/rsyslog-8.2010.0/tools/omfwd.c:1490:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData->port, tmp, i);
data/rsyslog-8.2010.0/tools/ompipe.c:157:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pData->fd = open((char*) pData->pipe, O_RDWR|O_NONBLOCK|O_CLOEXEC);
data/rsyslog-8.2010.0/tools/omusrmsg.c:95:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uname[MAXUNAMES][UNAMESZ+1];
data/rsyslog-8.2010.0/tools/omusrmsg.c:179:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((BSD_uf = fopen(_PATH_UTMP, "r")) == NULL) {
data/rsyslog-8.2010.0/tools/omusrmsg.c:220:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p[sizeof(_PATH_DEV) + UNAMESZ];
data/rsyslog-8.2010.0/tools/omusrmsg.c:274:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((ttyf = open(p, O_WRONLY|O_NOCTTY|O_NONBLOCK)) >= 0) {
data/rsyslog-8.2010.0/tools/pmrfc3164.c:239:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pMsg->tTIMESTAMP, &pMsg->tRcvdAt, sizeof(struct syslogTime));
data/rsyslog-8.2010.0/tools/pmrfc5424.c:248:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pMsg->tTIMESTAMP, &pMsg->tRcvdAt, sizeof(struct syslogTime));
data/rsyslog-8.2010.0/tools/pmrfc5424.c:254:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pMsg->tTIMESTAMP, &pMsg->tRcvdAt, sizeof(struct syslogTime));
data/rsyslog-8.2010.0/tools/rscryutil.c:81:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[EIF_MAX_RECTYPE_LEN+EIF_MAX_VALUE_LEN+128];
data/rsyslog-8.2010.0/tools/rscryutil.c:108:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rectype[EIF_MAX_RECTYPE_LEN+1];
data/rsyslog-8.2010.0/tools/rscryutil.c:109:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[EIF_MAX_VALUE_LEN+1];
data/rsyslog-8.2010.0/tools/rscryutil.c:126:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rectype[EIF_MAX_RECTYPE_LEN+1];
data/rsyslog-8.2010.0/tools/rscryutil.c:127:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[EIF_MAX_VALUE_LEN+1];
data/rsyslog-8.2010.0/tools/rscryutil.c:167:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rectype[EIF_MAX_RECTYPE_LEN+1] = "";
data/rsyslog-8.2010.0/tools/rscryutil.c:168:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[EIF_MAX_VALUE_LEN+1];
data/rsyslog-8.2010.0/tools/rscryutil.c:187:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iv[4096];
data/rsyslog-8.2010.0/tools/rscryutil.c:261:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64*1024];
data/rsyslog-8.2010.0/tools/rscryutil.c:327:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char eifname[4096];
data/rsyslog-8.2010.0/tools/rscryutil.c:333:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((logfp = fopen(name, "r")) == NULL) {
data/rsyslog-8.2010.0/tools/rscryutil.c:339:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((eifp = fopen(eifname, "r")) == NULL) {
data/rsyslog-8.2010.0/tools/rscryutil.c:376:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fd = open(fn, fmode, S_IRUSR)) == -1) {
data/rsyslog-8.2010.0/tools/rscryutil.c:412:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fd = open("/dev/urandom", O_RDONLY)) >= 0) {
data/rsyslog-8.2010.0/tools/rscryutil.c:483:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
randomKeyLen = atoi(optarg);
data/rsyslog-8.2010.0/tools/rsyslogd.c:93:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char progname[128];
data/rsyslog-8.2010.0/tools/rsyslogd.c:120:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(reply.svrreply.objname, "syslogd");
data/rsyslog-8.2010.0/tools/rsyslogd.c:281:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp = fopen((char*) tmpPidFile, "w")) == NULL) {
data/rsyslog-8.2010.0/tools/rsyslogd.c:315:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp = fopen((char*) PidFile, "r")) == NULL)
data/rsyslog-8.2010.0/tools/rsyslogd.c:352:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err[1024];
data/rsyslog-8.2010.0/tools/rsyslogd.c:353:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char em[2048];
data/rsyslog-8.2010.0/tools/rsyslogd.c:370:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szBuf[64];
data/rsyslog-8.2010.0/tools/rsyslogd.c:371:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const int lstnPidI = atoi(lstnPid);
data/rsyslog-8.2010.0/tools/rsyslogd.c:409:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err[1024];
data/rsyslog-8.2010.0/tools/rsyslogd.c:410:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msgBuf[4096];
data/rsyslog-8.2010.0/tools/rsyslogd.c:450:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(err, "OK");
data/rsyslog-8.2010.0/tools/rsyslogd.c:1293:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cwdbuf[128]; /* buffer to obtain/display current working directory */
data/rsyslog-8.2010.0/tools/rsyslogd.c:1444:40: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
iConfigVerify = (arg == NULL) ? 0 : atoi(arg);
data/rsyslog-8.2010.0/tools/rsyslogd.c:1456:30: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp_rs_full_conf_output = fopen(arg, "w");
data/rsyslog-8.2010.0/tools/rsyslogd.c:1504:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
iHelperUOpt = (arg == NULL) ? 0 : atoi(arg);
data/rsyslog-8.2010.0/tools/rsyslogd.c:1637:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bufStartUpMsg[512];
data/rsyslog-8.2010.0/tools/rsyslogd.c:1770:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/rsyslog-8.2010.0/tools/rsyslogd.c:1869:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/rsyslog-8.2010.0/tools/rsyslogd.c:2001:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/rsyslog-8.2010.0/tools/smfile.c:94:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param, pTimeStamp, lenTimeStamp);
data/rsyslog-8.2010.0/tools/smfile.c:98:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pHOSTNAME, lenHOSTNAME);
data/rsyslog-8.2010.0/tools/smfile.c:102:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pTAG, lenTAG);
data/rsyslog-8.2010.0/tools/smfile.c:107:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pMSG, lenMSG);
data/rsyslog-8.2010.0/tools/smfwd.c:98:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + 1, pPRI, lenPRI);
data/rsyslog-8.2010.0/tools/smfwd.c:102:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pTimeStamp, lenTimeStamp);
data/rsyslog-8.2010.0/tools/smfwd.c:106:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pHOSTNAME, lenHOSTNAME);
data/rsyslog-8.2010.0/tools/smfwd.c:110:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pTAG, lenTAG);
data/rsyslog-8.2010.0/tools/smfwd.c:115:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pMSG, lenMSG);
data/rsyslog-8.2010.0/tools/smtradfile.c:89:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param, pTimeStamp, CONST_LEN_TIMESTAMP_3164);
data/rsyslog-8.2010.0/tools/smtradfile.c:92:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + CONST_LEN_TIMESTAMP_3164 + 1, pHOSTNAME, lenHOSTNAME);
data/rsyslog-8.2010.0/tools/smtradfile.c:96:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pTAG, lenTAG);
data/rsyslog-8.2010.0/tools/smtradfile.c:101:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pMSG, lenMSG);
data/rsyslog-8.2010.0/tools/smtradfwd.c:96:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + 1, pPRI, lenPRI);
data/rsyslog-8.2010.0/tools/smtradfwd.c:100:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pTimeStamp, CONST_LEN_TIMESTAMP_3164);
data/rsyslog-8.2010.0/tools/smtradfwd.c:104:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pHOSTNAME, lenHOSTNAME);
data/rsyslog-8.2010.0/tools/smtradfwd.c:108:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pTAG, lenTAG);
data/rsyslog-8.2010.0/tools/smtradfwd.c:113:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iparam->param + iBuf, pMSG, lenMSG);
data/rsyslog-8.2010.0/tools/syslogd.c:122:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
i = open(_PATH_TTY, O_RDWR|O_CLOEXEC);
data/rsyslog-8.2010.0/action.c:543:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet_Hdlr(func(pThis->pQueue, data, (data == NULL)? 0 : strlen((char*) data))) { \
data/rsyslog-8.2010.0/action.c:711:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r = read(fd, filebuf, sizeof(filebuf) - 1);
data/rsyslog-8.2010.0/action.c:814:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
timebuf[strlen(timebuf)-1] = '\0'; /* strip LF */
data/rsyslog-8.2010.0/action.c:1454:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t toWrite = strlen(rendered) + 1;
data/rsyslog-8.2010.0/action.c:2149:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tplFind(ourConf, (char*)pTplName, strlen((char*)pTplName))) == NULL) {
data/rsyslog-8.2010.0/compat/getifaddrs.c:190:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(ifrl.ifr_name, ifrp->ifr_name,
data/rsyslog-8.2010.0/compat/getifaddrs.c:192:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(ifrl6.ifr_name, ifrp->ifr_name,
data/rsyslog-8.2010.0/compat/getifaddrs.c:399:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(lifrl.lifr_name, lifrp->lifr_name,
data/rsyslog-8.2010.0/compat/strndup.c:33:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len = strlen(s);
data/rsyslog-8.2010.0/contrib/fmhash/fmhash.c:168:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(hashStr);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:272:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((t=read(pInst->fd, sd_buffer, sd_buf_l)) != sd_buf_l) {
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:343:60: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (msg_len < fixedModConf.max_msg_size && (read_len = read(pInst->fd, read_buffer,
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:380:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg_len = strlen(fpath);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:462:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pInst->pszNewFName = (char*)malloc(strlen(fpath)+
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:749:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
inst->len_rename = strlen(inst->ff_rename);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:756:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
inst->len_reject = strlen(inst->ff_reject);
data/rsyslog-8.2010.0/contrib/imbatchreport/imbatchreport.c:802:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
inst->len_reject = strlen(inst->ff_reject);
data/rsyslog-8.2010.0/contrib/imczmq/imczmq.c:223:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
delimiter = iconf->topics + strlen(iconf->topics);
data/rsyslog-8.2010.0/contrib/imczmq/imczmq.c:347:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgSetRawMsg(pMsg, buf, strlen(buf));
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:521:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char*) pThis->short_id, id, sizeof(pThis->short_id)-1);
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:870:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, (char*)loadModConf->getContainerLogOptions, buf_size-1);
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:871:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t option_str_len = strlen((char*)loadModConf->getContainerLogOptions);
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:876:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t search_str_len = strlen(search_str);
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:884:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(token);
data/rsyslog-8.2010.0/contrib/imdocker/imdocker.c:1423:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(pname);
data/rsyslog-8.2010.0/contrib/imhttp/imhttp.c:355:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(connWrkr->pScratchBuf, ri->http_headers[i].name, connWrkr->scratchBufSize - 1);
data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c:186:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r = read(fklog, NULL, 0);
data/rsyslog-8.2010.0/contrib/imkmsg/kmsg.c:212:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
i = read(fklog, pRcv, 8192);
data/rsyslog-8.2010.0/contrib/impcap/ftp_parser.c:91:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp((const char *)first_part_packet, ftp_cmds[i], strlen((const char *)ftp_cmds[i]) + 1) == 0) {
data/rsyslog-8.2010.0/contrib/impcap/http_parser.c:55:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*initString += strlen(delimiterString);
data/rsyslog-8.2010.0/contrib/impcap/impcap.c:573:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgSetTAG(pMsg, inst->tag, strlen((const char *)inst->tag));
data/rsyslog-8.2010.0/contrib/impcap/impcap.c:598:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
json_object_object_add(jadd, "length", json_object_new_int(strlen(dataHex)));
data/rsyslog-8.2010.0/contrib/improg/improg.c:411:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((retval = read(pInst->fdPipeFromChild, &c, 1)) == 1) {
data/rsyslog-8.2010.0/contrib/improg/improg.c:650:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (write(pInst->fdPipeToChild, "STOP\n", strlen("STOP\n")) <= 0 &&
data/rsyslog-8.2010.0/contrib/imtuxedoulog/imtuxedoulog.c:434:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(strm.SetFName(pInst->pStrm, pInst->pszCurrFName, strlen((char*) pInst->pszCurrFName)));
data/rsyslog-8.2010.0/contrib/imtuxedoulog/imtuxedoulog.c:480:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(strm.SetFName(psSF, statefn, strlen((char*) statefn)));
data/rsyslog-8.2010.0/contrib/mmcount/mmcount.c:289:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msgPropDescrFill(&pProp, (uchar*)pData->pszKey, strlen(pData->pszKey));
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:173:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pWrkrData->addr.sun_path, (char *)pWrkrData->pData->pSockName, sizeof(pWrkrData->addr.sun_path) - 1);
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:311:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msgPropDescrFill(&propDesc, (uchar *)pFieldName, strlen(pFieldName));
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:491:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msgPropDescrFill(&propDesc, (uchar *)runModConf->container, strlen(runModConf->container));
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:787:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t sizeKey = strlen(loadModConf->container) + strlen(JSON_DARWIN_ID) + 2;
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:787:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t sizeKey = strlen(loadModConf->container) + strlen(JSON_DARWIN_ID) + 2;
data/rsyslog-8.2010.0/contrib/mmdarwin/mmdarwin.c:838:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (add_field_to_body(&(pWrkrData->darwinBody), pFieldValue, strlen(pFieldValue)) != 0)
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:764:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
loadModConf->de_dot_separator_len = strlen((const char *)loadModConf->de_dot_separator);
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1298:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(srcMetadataPath)));
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1473:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen((char *)loadModConf->srcMetadataPath)));
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1493:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pData->de_dot_separator_len = strlen((const char *)pData->de_dot_separator);
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1497:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(DFLT_CONTAINER_NAME)));
data/rsyslog-8.2010.0/contrib/mmkubernetes/mmkubernetes.c:1500:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(DFLT_CONTAINER_NAME)));
data/rsyslog-8.2010.0/contrib/mmsequence/mmsequence.c:222:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cstr) < 3) {
data/rsyslog-8.2010.0/contrib/mmtaghostname/mmtaghostname.c:145:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pData->lenTag = strlen(pData->pszTag);
data/rsyslog-8.2010.0/contrib/omamqp1/omamqp1.c:269:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pn_bytes_t msg = pn_bytes(strlen((const char *)ppString[0]),
data/rsyslog-8.2010.0/contrib/omczmq/omczmq.c:574:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
delimiter = topics + strlen(topics);
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:431:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(serverParam[strlen(serverParam)-1] != '/');
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:444:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
host = serverParam + strlen(SCHEME_HTTP);
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:446:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
host = serverParam + strlen(SCHEME_HTTPS);
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:451:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (r == 0) r = es_addBuf(&urlBuf, (char *)serverParam, strlen(serverParam));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:454:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&urlBuf, portBuf, strlen(portBuf));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:515:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&urlBuf, serverUrl, strlen(serverUrl));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:517:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&urlBuf, checkPath, strlen(checkPath));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:596:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
url = es_newStrFromCStr(baseUrl, strlen(baseUrl));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:661:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fjson_object_new_string_len(ERR_MSG_NULL, strlen(ERR_MSG_NULL)));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:726:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
toWrite = strlen(rendered) + 1;
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1218:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*batchBuf = strndup(batchString, strlen(batchString));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1277:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*batchBuf = strndup(batchString, strlen(batchString));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1318:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*batchBuf = strndup(batchString, strlen(batchString));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1428:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pWrkrData->batch.sizeBytes += strlen((char *)message);
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1463:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(curlPost(pWrkrData, (uchar*) batchBuf, strlen(batchBuf),
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1530:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(curlPost(pWrkrData, ppString[0], strlen((char*)ppString[0]), ppString, 1));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1563:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&auth, uid, strlen(uid));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1565:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(r == 0 && pwd != NULL) r = es_addBuf(&auth, pwd, strlen(pwd));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1592:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&header, key, strlen(key));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1595:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(r == 0 && value != NULL) r = es_addBuf(&header, value, strlen(value));
data/rsyslog-8.2010.0/contrib/omhttp/omhttp.c:1991:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t serverParamLastChar = strlen(serverParam)-1;
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:202:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
es_addBuf(url_buf, (char* )pWrkrData->pData->host, strlen((char*)pWrkrData->pData->host));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:208:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
es_addBuf(url_buf, portBuf, strlen(portBuf));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:217:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
es_addBuf(url_buf, (char* )pWrkrData->file, strlen((char* )pWrkrData->file));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:222:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
es_addBuf(url_buf, (char* )pWrkrData->pData->user, strlen((char* )pWrkrData->pData->user));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:225:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
es_addBuf(url_buf, op, strlen(op));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:381:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(content_type, HTTPFS_CONTENT_TYPE_JSON, strlen(HTTPFS_CONTENT_TYPE_JSON))) { \
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:430:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(jre->class, str, sizeof(jre->class));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:435:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(jre->exception, str, sizeof(jre->exception));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:440:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(jre->message, str, sizeof(jre->message));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:484:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
curl_easy_setopt(pWrkrData->curl, CURLOPT_POSTFIELDSIZE, strlen((char*) buf));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:528:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
curl_easy_setopt(pWrkrData->curl, CURLOPT_POSTFIELDSIZE, strlen((char*) buf));
data/rsyslog-8.2010.0/contrib/omhttpfs/omhttpfs.c:603:69: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(jre.exception, HTTPFS_FILEALREADYEXISTSEXCEPTION, strlen(HTTPFS_FILEALREADYEXISTSEXCEPTION))) {
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1074:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen((char*)pData->routing_key_template)) == NULL)
data/rsyslog-8.2010.0/contrib/omrabbitmq/omrabbitmq.c:1111:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen((char*)pData->body_template)) == NULL)
data/rsyslog-8.2010.0/contrib/omtcl/omtcl.c:121:92: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(getSubString(&p, fileName, PATH_MAX+1, ',') || getSubString(&p, buffer, 4096, ';') || !strlen(buffer)) {
data/rsyslog-8.2010.0/contrib/pmdb2diag/pmdb2diag.c:272:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
inst->sepSec = inst->timeformat[strlen(inst->timeformat)-1];
data/rsyslog-8.2010.0/contrib/pmsnare/pmsnare.c:239:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(inst->tabRepresentation, "\\t", 5);
data/rsyslog-8.2010.0/contrib/pmsnare/pmsnare.c:241:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(inst->tabRepresentation, "#011", 5);
data/rsyslog-8.2010.0/contrib/pmsnare/pmsnare.c:245:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(inst->tabRepresentation, "\t", 5);
data/rsyslog-8.2010.0/contrib/pmsnare/pmsnare.c:247:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
inst->tabLength=strlen(inst->tabRepresentation);
data/rsyslog-8.2010.0/grammar/grammar.c:1029:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define yystrlen strlen
data/rsyslog-8.2010.0/grammar/lexer.c:1853:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(fd, content, sb.st_size);
data/rsyslog-8.2010.0/grammar/lexer.c:1879:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((estr = es_newStr(strlen(param))) == NULL) {
data/rsyslog-8.2010.0/grammar/lexer.c:1889:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
es_addBuf(&estr, envval, strlen(envval));
data/rsyslog-8.2010.0/grammar/lexer.c:1912:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
es_addBuf(&estr, envval, strlen(envval));
data/rsyslog-8.2010.0/grammar/lexer.c:1933:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
estr = es_newStrFromCStr(errmsg, strlen(errmsg));
data/rsyslog-8.2010.0/grammar/lexer.c:1935:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
estr = es_newStrFromCStr(val, strlen(val));
data/rsyslog-8.2010.0/grammar/lexer.c:2127:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
(c = getc( yyin )) != EOF && c != '\n'; ++n ) \
data/rsyslog-8.2010.0/grammar/lexer.c:2337:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
yylval.estr = es_newStrFromBuf(yytext+1, strlen(yytext)-1);
data/rsyslog-8.2010.0/grammar/lexer.c:2347:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
yylval.estr = es_newStrFromBuf(yytext+1, strlen(yytext)-1);
data/rsyslog-8.2010.0/grammar/lexer.c:2511:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
yylval.estr = es_newStrFromBuf(yytext+1, strlen(yytext)-1);
data/rsyslog-8.2010.0/grammar/lexer.c:2531:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
yylval.estr = es_newStrFromBuf(yytext+1, strlen(yytext)-1);
data/rsyslog-8.2010.0/grammar/lexer.c:2844:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
yylval.estr = es_newStrFromBuf(yytext+1, strlen(yytext)-1);
data/rsyslog-8.2010.0/grammar/lexer.c:3721:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return yy_scan_bytes( yystr, (int) strlen(yystr) );
data/rsyslog-8.2010.0/grammar/rainerscript.c:454:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(ln);
data/rsyslog-8.2010.0/grammar/rainerscript.c:595:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len = strlen(param);
data/rsyslog-8.2010.0/grammar/rainerscript.c:609:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
val = es_newStrFromCStr(realval, strlen(realval));
data/rsyslog-8.2010.0/grammar/rainerscript.c:697:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
es_size_t lenName = strlen(name);
data/rsyslog-8.2010.0/grammar/rainerscript.c:1448:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lenstr = strlen(cstr);
data/rsyslog-8.2010.0/grammar/rainerscript.c:1578:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iLen = strlen((char*) pFld);
data/rsyslog-8.2010.0/grammar/rainerscript.c:1806:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
json = json_tokener_parse_ex(tokener, jsontext, strlen(jsontext));
data/rsyslog-8.2010.0/grammar/rainerscript.c:1881:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const int len = strlen(str);
data/rsyslog-8.2010.0/grammar/rainerscript.c:1911:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(str);
data/rsyslog-8.2010.0/grammar/rainerscript.c:1958:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret->d.estr = es_newStrFromCStr(envvar, strlen(envvar));
data/rsyslog-8.2010.0/grammar/rainerscript.c:2076:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(str);
data/rsyslog-8.2010.0/grammar/rainerscript.c:2168:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
estr = es_newStrFromCStr("NAN", strlen("NAN"));
data/rsyslog-8.2010.0/grammar/rainerscript.c:2173:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
estr = es_newStrFromCStr(str, strlen(str));
data/rsyslog-8.2010.0/grammar/rainerscript.c:2328:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret->d.estr = es_newStrFromCStr((char*)resStr, strlen((char*)resStr));
data/rsyslog-8.2010.0/grammar/rainerscript.c:2469:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(result, str, resMax);
data/rsyslog-8.2010.0/grammar/rainerscript.c:2472:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret->d.estr = es_newStrFromCStr(result, strlen(result));
data/rsyslog-8.2010.0/grammar/rainerscript.c:2524:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(str);
data/rsyslog-8.2010.0/grammar/rainerscript.c:2570:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(str);
data/rsyslog-8.2010.0/grammar/rainerscript.c:2802:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
: es_newStrFromCStr((char*) cstr, strlen((char*) cstr));
data/rsyslog-8.2010.0/grammar/rainerscript.c:3507:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
func->funcdata = tplFind(ourConf, tplName, strlen(tplName));
data/rsyslog-8.2010.0/grammar/rainerscript.c:4166:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msgPropDescrFill(&var->prop, (uchar*)var->name, strlen(var->name));
data/rsyslog-8.2010.0/grammar/rainerscript.c:5241:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msgPropDescrFill(&f_exists->prop, (uchar*)varname, strlen(varname));
data/rsyslog-8.2010.0/grammar/rainerscript.c:5407:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
es_str_t *estr = es_newStrFromCStr((char*)text, strlen(text));
data/rsyslog-8.2010.0/outchannel.c:210:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pOch->iLenName = strlen(pName);
data/rsyslog-8.2010.0/plugins/im3195/im3195.c:98:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
parseAndSubmitMessage(fromHost, fromHostIP, pszRawMsg, strlen((char*)pszRawMsg),
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:469:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len_full_name = strlen(dirname) + 1 + strlen(name) + 1;
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:469:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len_full_name = strlen(dirname) + 1 + strlen(name) + 1;
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1281:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tmp_id, (const char*)act->file_id, FILE_ID_HASH_SIZE);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1286:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
const int r = read(act->fd, filedata, FILE_ID_SIZE);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1293:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(act->file_id_prev, tmp_id, FILE_ID_HASH_SIZE);
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1505:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(strm.SetFName(act->pStrm, (uchar*)act->name, strlen(act->name)));
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:1536:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(strm.SetFName(act->pStrm, (uchar*)act->name, strlen(act->name)));
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:2454:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rd = read(ino_fd, iobuf, sizeof(iobuf));
data/rsyslog-8.2010.0/plugins/imfile/imfile.c:2665:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t toWrite = strlen(content);
data/rsyslog-8.2010.0/plugins/imgssapi/imgssapi.c:388:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name_buf.length = strlen(name_buf.value) + 1;
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:350:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen((char*)msg);
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:461:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
val_ofs = strlen(pidFieldName) + 1; /* name + '=' */
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:474:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
val_ofs = strlen("_PID") + 1; /* name + '=' */
data/rsyslog-8.2010.0/plugins/imjournal/imjournal.c:716:7: [1] (buffer) fscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (fscanf(r_sf, "%128s\n", readCursor) != EOF) {
data/rsyslog-8.2010.0/plugins/imklog/bsd.c:123:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bufsize= strlen((char*)buf);
data/rsyslog-8.2010.0/plugins/imklog/bsd.c:207:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r = read(fklog, NULL, 0);
data/rsyslog-8.2010.0/plugins/imklog/bsd.c:252:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
i = read(fklog, pRcv + len, iMaxLine - len);
data/rsyslog-8.2010.0/plugins/imklog/bsd.c:269:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(p);
data/rsyslog-8.2010.0/plugins/impstats/impstats.c:255:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[0].iov_len = nexpect = strlen(iov[0].iov_base) - 1; /* -1: strip \n */
data/rsyslog-8.2010.0/plugins/impstats/impstats.c:298:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iRet = submitLine(str, strlen(str));
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:466:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(local.sun_path, (char*) path, sizeof(local.sun_path)-1);
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:752:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char *) szHname, (char *) glbl.GetLocalHostName(), NI_MAXHOST);
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:753:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char *) szIP, (char *) glbl.GetLocalHostIP(), NI_MAXHOST);
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:2270:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((bindPort == NULL || strlen(bindPort) < 1) && (bindPath == NULL || strlen (bindPath) < 1)) {
data/rsyslog-8.2010.0/plugins/imptcp/imptcp.c:2270:74: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((bindPort == NULL || strlen(bindPort) < 1) && (bindPath == NULL || strlen (bindPath) < 1)) {
data/rsyslog-8.2010.0/plugins/imsolaris/imsolaris.c:212:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgSetRawMsg(pMsg, (char*)pRcv, strlen((char*)pRcv));
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:105:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(sizeof(*(su)) - sizeof((su)->sun_path) + strlen((su)->sun_path))
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:522:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(sunx.sun_path, (char*)pLstn->sockName, sizeof(sunx.sun_path));
data/rsyslog-8.2010.0/plugins/imuxsock/imuxsock.c:742:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if((lenRead = read(fd, buf, lenBuf - 1)) == -1) {
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:596:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(str);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:781:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
caddresslen = strlen(caddress);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:784:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(caddresslen != strlen(address)) {
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:785:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*pLenMsg = *pLenMsg + ((int)caddresslen - (int)strlen(address));
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1093:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
caddresslen = strlen(address);
data/rsyslog-8.2010.0/plugins/mmanon/mmanon.c:1284:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
caddresslen = strlen(address);
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:302:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char tempbuf[strlen(buf)];
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:303:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(tempbuf, 0, strlen(buf));
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:312:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(tempbuf, ",");
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:317:5: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(tempbuf, buf, 1);
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:319:5: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(tempbuf, buf, 1);
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:324:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tempbuf[strlen(tempbuf) + 1] = '\n';
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:325:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(*membuf, tempbuf, strlen(tempbuf));
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:340:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msgPropDescrFill(&pProp, (uchar*)pData->pszKey, strlen(pData->pszKey));
data/rsyslog-8.2010.0/plugins/mmdblookup/mmdblookup.c:397:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char buf[(strlen((char *)(pData->fieldList.name[i])))+1];
data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c:231:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r = read(pWrkrData->fdPipeIn, pWrkrData->respBuf+numCharsRead,
data/rsyslog-8.2010.0/plugins/mmexternal/mmexternal.c:455:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lenWrite = strlen((const char*)inputstr);
data/rsyslog-8.2010.0/plugins/mmjsonparse/mmjsonparse.c:243:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(processJSON(pWrkrData, pMsg, (char*) buf, strlen((char*)buf)));
data/rsyslog-8.2010.0/plugins/mmjsonparse/mmjsonparse.c:316:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pData->lenCookie = strlen(pData->cookie);
data/rsyslog-8.2010.0/plugins/mmnormalize/mmnormalize.c:356:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size += strlen(tStr);
data/rsyslog-8.2010.0/plugins/mmnormalize/mmnormalize.c:363:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "\n");
data/rsyslog-8.2010.0/plugins/mmnormalize/mmnormalize.c:368:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "\n");
data/rsyslog-8.2010.0/plugins/mmnormalize/mmnormalize.c:370:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "\0");
data/rsyslog-8.2010.0/plugins/mmnormalize/mmnormalize.c:378:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cstr) < 2) {
data/rsyslog-8.2010.0/plugins/mmnormalize/mmnormalize.c:406:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(msgPropDescrFill(pData->varDescr, (uchar*) varName, strlen(varName)));
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:260:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
curl_easy_setopt(curl, CURLOPT_POSTFIELDSIZE, strlen(healthCheckMessage));
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:358:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
toWrite = strlen(rendered) + 1;
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:407:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
url = es_newStrFromCStr(baseUrl, strlen(baseUrl));
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:443:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = strlen(*newMessage);
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:446:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = strlen(*newMessage);
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:460:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = strlen(message);
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:549:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(curlPost(pWrkrData, (uchar*) cstr, strlen(cstr), pWrkrData->batch.nmemb));
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:594:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(curlPost(pWrkrData, ppString[0], strlen((char*)ppString[0]), 1));
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:737:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&auth, user, strlen(user));
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:741:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&auth, pwd, strlen(pwd));
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:771:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(server[strlen(server)-1] != '/');
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:784:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
host = server + strlen(SCHEME_HTTP);
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:786:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
host = server + strlen(SCHEME_HTTPS);
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:792:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&urlBuf, (char *)server, strlen(server));
data/rsyslog-8.2010.0/plugins/omclickhouse/omclickhouse.c:795:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&urlBuf, portBuf, strlen(portBuf));
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:435:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(serverParam[strlen(serverParam)-1] != '/');
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:448:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
host = serverParam + strlen(SCHEME_HTTP);
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:450:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
host = serverParam + strlen(SCHEME_HTTPS);
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:455:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (r == 0) r = es_addBuf(&urlBuf, (char *)serverParam, strlen(serverParam));
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:458:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&urlBuf, portBuf, strlen(portBuf));
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:512:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&urlBuf, serverUrl, strlen(serverUrl));
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:617:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
url = es_newStrFromCStr(baseUrl, strlen(baseUrl));
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:713:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = strlen((char *)message);
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1462:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
toWrite = strlen(rendered) + 1;
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1637:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(curlPost(pWrkrData, (uchar*) cstr, strlen(cstr), NULL, pWrkrData->batch.nmemb));
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1678:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(curlPost(pWrkrData, ppString[0], strlen((char*)ppString[0]),
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1709:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = es_addBuf(&auth, uid, strlen(uid));
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:1711:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(r == 0 && pwd != NULL) r = es_addBuf(&auth, pwd, strlen(pwd));
data/rsyslog-8.2010.0/plugins/omelasticsearch/omelasticsearch.c:2068:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t serverParamLastChar = strlen(serverParam)-1;
data/rsyslog-8.2010.0/plugins/omgssapi/omgssapi.c:213:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
out_tok.length = strlen(pData->f_hname) + strlen(base) + 2;
data/rsyslog-8.2010.0/plugins/omgssapi/omgssapi.c:213:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
out_tok.length = strlen(pData->f_hname) + strlen(base) + 2;
data/rsyslog-8.2010.0/plugins/omgssapi/omgssapi.c:216:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(out_tok.value, "@");
data/rsyslog-8.2010.0/plugins/omgssapi/omgssapi.c:418:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen((char*) psz);
data/rsyslog-8.2010.0/plugins/omhdfs/omhdfs.c:366:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen((char*)buf);
data/rsyslog-8.2010.0/plugins/omjournal/omjournal.c:217:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
key_len = strlen(key);
data/rsyslog-8.2010.0/plugins/omjournal/omjournal.c:218:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
val_len = strlen(val);
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:636:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[0].iov_len = strlen(iov[0].iov_base);
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:787:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
RD_KAFKA_V_VALUE(msg, strlen((char*)msg)),
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:797:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
RD_KAFKA_V_VALUE(msg, strlen((char*)msg)),
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:800:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
RD_KAFKA_V_KEY(key,strlen((char*)key)),
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:815:71: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKmalloc(fmsgEntry = failedmsg_entry_construct((char*) key, key ? strlen((char*)key) : 0,
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:816:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(char*) msg, strlen((char*)msg),rd_kafka_topic_name(rkt)));
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:831:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg, strlen((char*)msg), key,
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:832:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
key ? strlen((char*)key) : 0,
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:846:71: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKmalloc(fmsgEntry = failedmsg_entry_construct((char*) key, key ? strlen((char*)key) : 0,
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:847:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(char*) msg, strlen((char*)msg),rd_kafka_topic_name(rkt)));
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:942:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!strncmp(key, name, strlen(name))){
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1360:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(strlen((char*)fmsgEntry->payload)-1),
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1365:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(strlen((char*)fmsgEntry->payload)-1),
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1426:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
"topic '%s'\n", (int)(strlen((char*)fmsgEntry->payload)-1),
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1501:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(pStrTabPos+1)) {
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1503:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pStrTabPos+1,strlen(pStrTabPos+1),
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1504:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pStrTabPos2+1,strlen(pStrTabPos2+1),
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1509:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pStrTabPos2+1,strlen(pStrTabPos2+1),
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1743:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(strlen((char*)ppString[0])-1), ppString[0],
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1749:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(strlen((char*)ppString[0])-1), ppString[0],
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1755:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen((char*)(pData->dynaKey ? ppString[dynaKeyID] : pData->key)) : 0,
data/rsyslog-8.2010.0/plugins/omkafka/omkafka.c:1756:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(char*)ppString[0], strlen((char*)ppString[0]),
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:217:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(Send(pWrkrData->md.smtp.sock, (char*)pRcpt->pszTo, strlen((char*)pRcpt->pszTo)));
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:247:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(Send(pWrkrData->md.smtp.sock, (char*)pRcpt->pszTo, strlen((char*)pRcpt->pszTo)));
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:604:3: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen((char*)glbl.GetLocalHostName())));
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:609:71: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(Send(pWrkrData->md.smtp.sock, (char*)pData->md.smtp.pszFrom, strlen((char*)pData->md.smtp.pszFrom)));
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:621:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(Send(pWrkrData->md.smtp.sock, (char*)szDateBuf, strlen((char*)szDateBuf)));
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:624:71: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(Send(pWrkrData->md.smtp.sock, (char*)pData->md.smtp.pszFrom, strlen((char*)pData->md.smtp.pszFrom)));
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:630:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(Send(pWrkrData->md.smtp.sock, (char*)subject, strlen((char*)subject)));
data/rsyslog-8.2010.0/plugins/ommail/ommail.c:640:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(bodySend(pWrkrData, (char*)body, strlen((char*) body)));
data/rsyslog-8.2010.0/plugins/ommongodb/ommongodb.c:670:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t server = strlen(pData->server);
data/rsyslog-8.2010.0/plugins/ommongodb/ommongodb.c:671:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t port = strlen(pData->port);
data/rsyslog-8.2010.0/plugins/ommongodb/ommongodb.c:674:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t uri_len = strlen("mongodb://") + server + port + 2;
data/rsyslog-8.2010.0/plugins/ommongodb/ommongodb.c:676:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
uid = strlen(pData->uid);
data/rsyslog-8.2010.0/plugins/ommongodb/ommongodb.c:677:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pwd = strlen(pData->pwd);
data/rsyslog-8.2010.0/plugins/ommongodb/ommongodb.c:681:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
uri_len += strlen("?ssl=true"); /* "?ssl=true" & "&ssl=true" are the same size */
data/rsyslog-8.2010.0/plugins/omprog/omprog.c:403:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len = strlen((char*)szMsg);
data/rsyslog-8.2010.0/plugins/omprog/omprog.c:488:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
lenRead = read(pChildCtx->fdPipeIn, lineBuf + offset, sizeof(lineBuf) - offset - 1);
data/rsyslog-8.2010.0/plugins/omprog/omprog.c:695:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
lenRead = read(pCtx->fdPipe[0], readBuf, sizeof(readBuf));
data/rsyslog-8.2010.0/plugins/omprog/omprog.c:999:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len = strlen((char*)szMsg);
data/rsyslog-8.2010.0/plugins/omrelp/omrelp.c:671:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lenMsg = strlen((char*) pMsg); /* TODO: don't we get this? */
data/rsyslog-8.2010.0/plugins/omsnmp/omsnmp.c:239:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
session.community_len = strlen((char*) session.community);
data/rsyslog-8.2010.0/plugins/omstdout/omstdout.c:210:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(toWrite);
data/rsyslog-8.2010.0/plugins/omudpspoof/omudpspoof.c:625:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen((char*) psz);
data/rsyslog-8.2010.0/plugins/omuxsock/omuxsock.c:309:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pData->addr.sun_path, (char*)pData->sockName, sizeof(pData->addr.sun_path));
data/rsyslog-8.2010.0/plugins/omuxsock/omuxsock.c:357:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen((char*) psz);
data/rsyslog-8.2010.0/plugins/pmnull/pmnull.c:131:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
inst->lenTag = strlen(inst->tag);
data/rsyslog-8.2010.0/runtime/datetime.c:1319:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(pBuf);
data/rsyslog-8.2010.0/runtime/dnscache.c:319:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fqdnLen = strlen(fqdnBuf);
data/rsyslog-8.2010.0/runtime/dnscache.c:336:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
prop.CreateStringProp(&etry->ip, (uchar*)szIP, strlen(szIP));
data/rsyslog-8.2010.0/runtime/errmsg.c:116:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const int msglen = (int) strlen(buf);
data/rsyslog-8.2010.0/runtime/errmsg.c:154:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(buf, "error message lost due to problem with vsnprintf", sizeof(buf));
data/rsyslog-8.2010.0/runtime/errmsg.c:182:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(buf, "error message lost due to problem with vsnprintf", sizeof(buf));
data/rsyslog-8.2010.0/runtime/errmsg.c:245:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
toWrite = strlen(rendered) + 1;
data/rsyslog-8.2010.0/runtime/glbl.c:1107:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen((char*)offset) != 6
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:373:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
noSigSize = 2 + imprintLen + (errorText ? (2 + strlen(errorText) + 1) : 0);
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:381:74: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKr(tlvWriteOctetStringTLV(outfile, 0x00, 0x02, (uint8_t*) errorText, strlen(errorText) + 1));
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:403:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKr(KSI_Utf8String_new(ksi->ctx->ksi_ctx, key, strlen(key) + 1, &key_tlv));
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:406:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKr(KSI_Utf8String_new(ksi->ctx->ksi_ctx, value, strlen(value) + 1, &value_tlv));
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:533:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fd, &sf, sizeof (sf)) != sizeof (sf)) goto done;
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:540:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fd, ksi->lastLeaf + 1, sf.lenHash) != sf.lenHash)
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:678:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(fwrite(header, strlen(header), 1, f) != 1) {
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:817:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if(read(fd, ksi->IV, hashlen) == hashlen) {}; /* keep compiler happy */
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:1602:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ctx->aggregatorUri = (uri != NULL && strlen(uri) != 0) ? strdup(uri) : NULL;
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:1603:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ctx->aggregatorId = (loginid != NULL && strlen(loginid) != 0) ? strdup(loginid) : NULL;
data/rsyslog-8.2010.0/runtime/lib_ksils12.c:1604:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ctx->aggregatorKey = (key != NULL && strlen(key) != 0) ? strdup(key) : NULL;
data/rsyslog-8.2010.0/runtime/libgcry.c:146:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nRead = read(gf->fd, gf->readBuf, READBUF_SIZE);
data/rsyslog-8.2010.0/runtime/libgcry.c:192:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
didRead = read(gf->fd, hdrBuf, toRead);
data/rsyslog-8.2010.0/runtime/libgcry.c:255:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
valueLen = strlen(value);
data/rsyslog-8.2010.0/runtime/libgcry_common.c:63:5: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if(read(fd, *key, sb.st_size) != sb.st_size) goto done;
data/rsyslog-8.2010.0/runtime/libgcry_common.c:135:5: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if(read(fd, c, 1) != 1) {
data/rsyslog-8.2010.0/runtime/lmcry_gcry.c:179:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
keylen = strlen((char*)key);
data/rsyslog-8.2010.0/runtime/lookup.c:327:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return es_newStrFromCStr(r, strlen(r));
data/rsyslog-8.2010.0/runtime/lookup.c:345:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return es_newStrFromCStr(r, strlen(r));
data/rsyslog-8.2010.0/runtime/lookup.c:398:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return es_newStrFromCStr(r, strlen(r));
data/rsyslog-8.2010.0/runtime/lookup.c:937:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(fd, iobuf, sb.st_size);
data/rsyslog-8.2010.0/runtime/lookup.c:1007:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
thd_name_len = ustrlen(lu->name) + strlen(reloader_prefix) + 1;
data/rsyslog-8.2010.0/runtime/lookup.c:1010:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(reloader_thd_name + strlen(reloader_prefix), (char*) lu->name);
data/rsyslog-8.2010.0/runtime/modules.c:1118:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iModNameLen = strlen((char*)pModName);
data/rsyslog-8.2010.0/runtime/modules.c:1182:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iPathLen = strlen((char *)pModDirCurr);
data/rsyslog-8.2010.0/runtime/modules.c:1213:3: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat((char *) pPathBuf, (char *) pModName, lenPathBuf - iPathLen - 1);
data/rsyslog-8.2010.0/runtime/modules.c:1221:4: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
strncat((char *) pPathBuf, ".so", lenPathBuf - strlen((char*) pPathBuf) - 1);
data/rsyslog-8.2010.0/runtime/modules.c:1221:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncat((char *) pPathBuf, ".so", lenPathBuf - strlen((char*) pPathBuf) - 1);
data/rsyslog-8.2010.0/runtime/msg.c:2595:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pMsg->lenStrucData = strlen(pszStrucData);
data/rsyslog-8.2010.0/runtime/msg.c:2715:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pThis->dfltTZ, tz, 7);
data/rsyslog-8.2010.0/runtime/msg.c:2958:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgSetRawMsg(pMsg, pszRawMsg, strlen(pszRawMsg));
data/rsyslog-8.2010.0/runtime/msg.c:4600:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgSetRawMsg(pMsg, psz, strlen(psz));
data/rsyslog-8.2010.0/runtime/msg.c:4603:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgReplaceMSG(pMsg, (const uchar*)psz, strlen(psz));
data/rsyslog-8.2010.0/runtime/msg.c:4606:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgSetTAG(pMsg, (const uchar*)psz, strlen(psz));
data/rsyslog-8.2010.0/runtime/msg.c:4633:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgSetHOSTNAME(pMsg, (const uchar*)psz, strlen(psz));
data/rsyslog-8.2010.0/runtime/msg.c:4636:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgSetRcvFromStr(pMsg, (const uchar*) psz, strlen(psz), &propFromHost);
data/rsyslog-8.2010.0/runtime/msg.c:4640:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MsgSetRcvFromIPStr(pMsg, (const uchar*)psz, strlen(psz), &propRcvFromIP);
data/rsyslog-8.2010.0/runtime/msg.c:4774:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int key_len = strlen(key);
data/rsyslog-8.2010.0/runtime/net.c:216:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pNew->lenDomainPart = strlen((char*)pNew->pszDomainPart);
data/rsyslog-8.2010.0/runtime/net.c:1305:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(setsockopt(*s, SOL_SOCKET, SO_BINDTODEVICE, device, strlen(device) + 1) < 0)
data/rsyslog-8.2010.0/runtime/nsd_gtls.c:159:5: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if(read(fd, pBuf->data, stat_st.st_size) != stat_st.st_size) {
data/rsyslog-8.2010.0/runtime/nsd_gtls.c:936:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!rsCStrSzStrCmp(pstrFingerprint, pPeer->pszID, strlen((char*) pPeer->pszID))) {
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:641:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(pristringBuf, "ALL:+COMPLEMENTOFDEFAULT:+ADH:+ECDH:+aNULL@SECLEVEL=0",
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:644:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(pristringBuf, "ALL:+COMPLEMENTOFDEFAULT:+ADH:+ECDH:+aNULL",
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:711:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!rsCStrSzStrCmp(pstrFingerprint, pPeer->pszID, strlen((char*) pPeer->pszID))) {
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:776:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen((const char*)pPeer->pszID), 0, NULL);
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:1768:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(pristringBuf, "ALL:+COMPLEMENTOFDEFAULT:+ADH:+ECDH:+aNULL@SECLEVEL=0",
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:1771:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(pristringBuf, "ALL:+COMPLEMENTOFDEFAULT:+ADH:+ECDH:+aNULL",
data/rsyslog-8.2010.0/runtime/nsd_ossl.c:1839:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (pCurrentPos != NULL && strlen(pCurrentPos) > 0) {
data/rsyslog-8.2010.0/runtime/nsd_ptcp.c:890:67: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(setsockopt(pThis->sock, SOL_SOCKET, SO_BINDTODEVICE, device, strlen(device) + 1) < 0)
data/rsyslog-8.2010.0/runtime/operatingstate.c:77:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int rd = read(fd, iobuf, len_clean_close);
data/rsyslog-8.2010.0/runtime/queue.c:2664:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lentmpQIFName = strlen( pThis->pszQIFNam) + strlen(".tmp") + 1;
data/rsyslog-8.2010.0/runtime/queue.c:2664:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lentmpQIFName = strlen( pThis->pszQIFNam) + strlen(".tmp") + 1;
data/rsyslog-8.2010.0/runtime/rsconf.c:847:3: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(iUmask);
data/rsyslog-8.2010.0/runtime/rsconf.c:874:24: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
setUmask(cnf->globals.umask);
data/rsyslog-8.2010.0/runtime/rsconf.c:1160:28: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
NULL, &loadConf->globals.umask, NULL));
data/rsyslog-8.2010.0/runtime/rsconf.h:77:6: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
int umask; /* umask to use */
data/rsyslog-8.2010.0/runtime/srutils.c:566:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, p, buflen);
data/rsyslog-8.2010.0/runtime/srutils.c:592:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char*) buf, (char*) name, 79);
data/rsyslog-8.2010.0/runtime/srutils.c:746:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if(read(fdURandom, &ret, sizeof(long int)) == -1) {
data/rsyslog-8.2010.0/runtime/statsobj.c:387:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char*)esbuf, (char*)pCtr->name, sizeof(esbuf)-1);
data/rsyslog-8.2010.0/runtime/stream.c:716:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
const ssize_t lenRead = read(pThis->fd, pThis->pIOBuf_truncation, pThis->iBufPtrMax);
data/rsyslog-8.2010.0/runtime/stream.c:773:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
iLenRead = read(pThis->fd, pThis->pIOBuf, toRead);
data/rsyslog-8.2010.0/runtime/stream.c:891:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const int escapeLFString_len = (escapeLFString == NULL) ? 3 : strlen((char*) escapeLFString);
data/rsyslog-8.2010.0/runtime/stream.c:2108:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(strmWrite(pThis, szBuf, strlen((char*)szBuf)));
data/rsyslog-8.2010.0/runtime/stringbuf.c:96:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pThis->iStrLen = strlen((char *) sz);
data/rsyslog-8.2010.0/runtime/stringbuf.c:97:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pThis->iBufSize = strlen((char *) sz) + 1;
data/rsyslog-8.2010.0/runtime/stringbuf.c:318:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return rsCStrAppendStrWithLen(pThis, psz, strlen((char*) psz));
data/rsyslog-8.2010.0/runtime/stringbuf.c:385:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t newlen = strlen((char*)pszNew);
data/rsyslog-8.2010.0/runtime/stringbuf.c:564:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(iLenSz == strlen((char*)psz)); /* just make sure during debugging! */
data/rsyslog-8.2010.0/runtime/stringbuf.c:666:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(iLenSz == strlen((char*)psz)); /* just make sure during debugging! */
data/rsyslog-8.2010.0/runtime/stringbuf.c:703:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(iLenSz == strlen((char*)psz)); /* just make sure during debugging! */
data/rsyslog-8.2010.0/runtime/tcpsrv.c:1311:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char*)pThis->dfltTZ, (char*)tz, sizeof(pThis->dfltTZ));
data/rsyslog-8.2010.0/runtime/unicode-helper.h:32:35: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
#define ustrncpy(psz1, psz2, len) strncpy((char*)(psz1), (char*)(psz2), (len))
data/rsyslog-8.2010.0/runtime/unicode-helper.h:35:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define ustrlen(psz) (strlen((const char*) (psz)))
data/rsyslog-8.2010.0/template.c:1240:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pTpl->iLenName = strlen(pName);
data/rsyslog-8.2010.0/template.c:1434:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len_json = strlen(sz) - 4;
data/rsyslog-8.2010.0/template.c:1751:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet(msgPropDescrFill(&pTpe->data.field.msgProp, name, strlen((char*)name)));
data/rsyslog-8.2010.0/tests/chkseq.c:135:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(edLen != (int) strlen(edBuf)) {
data/rsyslog-8.2010.0/tests/chkseq.c:137:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (edLen < (int) strlen(edBuf)) {
data/rsyslog-8.2010.0/tests/chkseq.c:141:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
edLen, (long) strlen(edBuf), i);
data/rsyslog-8.2010.0/tests/chkseq.c:146:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
edLen, (long) strlen(edBuf), i);
data/rsyslog-8.2010.0/tests/chkseq.c:182:10: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int c = getc(fp);
data/rsyslog-8.2010.0/tests/chkseq.c:200:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(edLen != (int) strlen(edBuf)) {
data/rsyslog-8.2010.0/tests/chkseq.c:202:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (edLen < (int) strlen(edBuf)) {
data/rsyslog-8.2010.0/tests/chkseq.c:207:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
edLen, (long) strlen(edBuf), i);
data/rsyslog-8.2010.0/tests/chkseq.c:213:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
edLen, (long) strlen(edBuf), i);
data/rsyslog-8.2010.0/tests/chkseq.c:242:11: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = fgetc(fp) ; c != '\n' && c != EOF ; c = fgetc(fp))
data/rsyslog-8.2010.0/tests/chkseq.c:242:51: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = fgetc(fp) ; c != '\n' && c != EOF ; c = fgetc(fp))
data/rsyslog-8.2010.0/tests/diagtalker.c:71:5: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000); /* ms = 1000 us! */
data/rsyslog-8.2010.0/tests/diagtalker.c:131:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(line);
data/rsyslog-8.2010.0/tests/mangle_qi.c:39:2: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
fgetc(qi); /* skip '+' */
data/rsyslog-8.2010.0/tests/mangle_qi.c:40:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(i = 0 ; (c = fgetc(qi)) != ':' ; ++i) {
data/rsyslog-8.2010.0/tests/mangle_qi.c:52:10: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = fgetc(qi) ; isdigit(c) ; c = fgetc(qi))
data/rsyslog-8.2010.0/tests/mangle_qi.c:52:39: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = fgetc(qi) ; isdigit(c) ; c = fgetc(qi))
data/rsyslog-8.2010.0/tests/mangle_qi.c:56:10: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = fgetc(qi) ; isdigit(c) ; c = fgetc(qi))
data/rsyslog-8.2010.0/tests/mangle_qi.c:56:39: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = fgetc(qi) ; isdigit(c) ; c = fgetc(qi))
data/rsyslog-8.2010.0/tests/mangle_qi.c:60:10: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = fgetc(qi) ; isdigit(c) ; c = fgetc(qi))
data/rsyslog-8.2010.0/tests/mangle_qi.c:60:39: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = fgetc(qi) ; isdigit(c) ; c = fgetc(qi))
data/rsyslog-8.2010.0/tests/mangle_qi.c:81:13: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while((c = fgetc(qi)) != EOF)
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:325:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int l = read(piperead, &c, 1);
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:347:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(1000 * wait_after_accept);
data/rsyslog-8.2010.0/tests/miniamqpsrvr.c:355:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rd = read(fdc, wrkBuf + nRead, sizeof(wrkBuf) - nRead);
data/rsyslog-8.2010.0/tests/minitcpsrvr.c:123:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nRead = read(fdc, wrkBuf, sizeof(wrkBuf));
data/rsyslog-8.2010.0/tests/ourtail.c:36:10: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = getchar() ; c != EOF && c != '\n' ; c = getchar())
data/rsyslog-8.2010.0/tests/ourtail.c:36:50: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for(c = getchar() ; c != EOF && c != '\n' ; c = getchar())
data/rsyslog-8.2010.0/tests/ourtail.c:40:7: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getchar();
data/rsyslog-8.2010.0/tests/ourtail.c:42:24: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
for( ; c != EOF ; c = getchar())
data/rsyslog-8.2010.0/tests/randomgen.c:89:13: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if(fputc(fgetc(rfp), fp) == EOF) {
data/rsyslog-8.2010.0/tests/tcpflood.c:155:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, p, buflen);
data/rsyslog-8.2010.0/tests/tcpflood.c:430:6: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000); /* ms = 1000 us! */
data/rsyslog-8.2010.0/tests/tcpflood.c:653:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
payloadStringLen = strlen(payloadLen);
data/rsyslog-8.2010.0/tests/tcpflood.c:806:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(waittime);
data/rsyslog-8.2010.0/tests/tcpflood.c:1238:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(pCurrentPos) > 0) {
data/rsyslog-8.2010.0/tools/ompipe.c:190:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iLenWritten = write(pData->fd, ppString[0], strlen((char*)ppString[0]));
data/rsyslog-8.2010.0/tools/omusrmsg.c:276:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
wrRet = write(ttyf, pMsg, strlen((char*)pMsg));
data/rsyslog-8.2010.0/tools/rscryutil.c:139:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
valueLen = strlen(value);
data/rsyslog-8.2010.0/tools/rscryutil.c:199:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(cry_key) != keyLength) {
data/rsyslog-8.2010.0/tools/rscryutil.c:413:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if(read(fd, cry_key, randomKeyLen) != randomKeyLen) {
data/rsyslog-8.2010.0/tools/rscryutil.c:495:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cry_keylen = strlen(cry_key);
data/rsyslog-8.2010.0/tools/rsyslogd.c:122:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
SRCMIN(sizeof(reply.svrreply.rtnmsg)-1, strlen(txt)), "%s", txt);
data/rsyslog-8.2010.0/tools/rsyslogd.c:461:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int nRead = read(pipefd[0], msgBuf, sizeof(msgBuf));
data/rsyslog-8.2010.0/tools/rsyslogd.c:486:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const int nWritten = write(pipefd, msg, strlen(msg));
data/rsyslog-8.2010.0/tools/rsyslogd.c:735:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CHKiRet_Hdlr(func(*ppQueue, data, (data == NULL)? 0 : strlen((char*) data))) { \
data/rsyslog-8.2010.0/tools/rsyslogd.c:2103:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(progname,argv[0], sizeof(progname)-1);
data/rsyslog-8.2010.0/tools/smfwd.c:76:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lenPRI = strlen(pPRI);
data/rsyslog-8.2010.0/tools/smtradfwd.c:75:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lenPRI = strlen(pPRI);
ANALYSIS SUMMARY:
Hits = 1292
Lines analyzed = 157363 in approximately 4.29 seconds (36688 lines/second)
Physical Source Lines of Code (SLOC) = 112416
Hits@level = [0] 560 [1] 405 [2] 760 [3] 41 [4] 79 [5] 7
Hits@level+ = [0+] 1852 [1+] 1292 [2+] 887 [3+] 127 [4+] 86 [5+] 7
Hits/KSLOC@level+ = [0+] 16.4745 [1+] 11.493 [2+] 7.89034 [3+] 1.12973 [4+] 0.765016 [5+] 0.0622687
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.