Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/sigviewer-0.6.2/src/application_context_impl.cpp Examining data/sigviewer-0.6.2/src/application_context_impl.h Examining data/sigviewer-0.6.2/src/base/application_states.h Examining data/sigviewer-0.6.2/src/base/data_block.cpp Examining data/sigviewer-0.6.2/src/base/data_block.h Examining data/sigviewer-0.6.2/src/base/exception.cpp Examining data/sigviewer-0.6.2/src/base/exception.h Examining data/sigviewer-0.6.2/src/base/file_states.h Examining data/sigviewer-0.6.2/src/base/fixed_data_block.cpp Examining data/sigviewer-0.6.2/src/base/fixed_data_block.h Examining data/sigviewer-0.6.2/src/base/math_utils.cpp Examining data/sigviewer-0.6.2/src/base/math_utils.h Examining data/sigviewer-0.6.2/src/base/signal_channel.cpp Examining data/sigviewer-0.6.2/src/base/signal_channel.h Examining data/sigviewer-0.6.2/src/base/signal_event.cpp Examining data/sigviewer-0.6.2/src/base/signal_event.h Examining data/sigviewer-0.6.2/src/base/sigviewer_user_types.h Examining data/sigviewer-0.6.2/src/base/tab_states.h Examining data/sigviewer-0.6.2/src/command_executer.h Examining data/sigviewer-0.6.2/src/commands/convert_file_command.cpp Examining data/sigviewer-0.6.2/src/commands/convert_file_command.h Examining data/sigviewer-0.6.2/src/commands/open_file_command.cpp Examining data/sigviewer-0.6.2/src/commands/open_file_command.h Examining data/sigviewer-0.6.2/src/editing_commands/change_channel_undo_command.cpp Examining data/sigviewer-0.6.2/src/editing_commands/change_channel_undo_command.h Examining data/sigviewer-0.6.2/src/editing_commands/change_type_undo_command.cpp Examining data/sigviewer-0.6.2/src/editing_commands/change_type_undo_command.h Examining data/sigviewer-0.6.2/src/editing_commands/delete_event_undo_command.cpp Examining data/sigviewer-0.6.2/src/editing_commands/delete_event_undo_command.h Examining data/sigviewer-0.6.2/src/editing_commands/macro_undo_command.cpp Examining data/sigviewer-0.6.2/src/editing_commands/macro_undo_command.h Examining data/sigviewer-0.6.2/src/editing_commands/new_event_undo_command.cpp Examining data/sigviewer-0.6.2/src/editing_commands/new_event_undo_command.h Examining data/sigviewer-0.6.2/src/editing_commands/resize_event_undo_command.cpp Examining data/sigviewer-0.6.2/src/editing_commands/resize_event_undo_command.h Examining data/sigviewer-0.6.2/src/file_context.cpp Examining data/sigviewer-0.6.2/src/file_context.h Examining data/sigviewer-0.6.2/src/file_handling/basic_header.cpp Examining data/sigviewer-0.6.2/src/file_handling/basic_header.h Examining data/sigviewer-0.6.2/src/file_handling/channel_manager.cpp Examining data/sigviewer-0.6.2/src/file_handling/channel_manager.h Examining data/sigviewer-0.6.2/src/file_handling/event_manager.h Examining data/sigviewer-0.6.2/src/file_handling/file_handler_factory.h Examining data/sigviewer-0.6.2/src/file_handling/file_signal_reader.cpp Examining data/sigviewer-0.6.2/src/file_handling/file_signal_reader.h Examining data/sigviewer-0.6.2/src/file_handling/file_signal_reader_factory.cpp Examining data/sigviewer-0.6.2/src/file_handling/file_signal_reader_factory.h Examining data/sigviewer-0.6.2/src/file_handling/file_signal_writer.h Examining data/sigviewer-0.6.2/src/file_handling/file_signal_writer_factory.cpp Examining data/sigviewer-0.6.2/src/file_handling/file_signal_writer_factory.h Examining data/sigviewer-0.6.2/src/file_handling_impl/biosig_basic_header.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/biosig_basic_header.h Examining data/sigviewer-0.6.2/src/file_handling_impl/biosig_reader.h Examining data/sigviewer-0.6.2/src/file_handling_impl/biosig_writer.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/biosig_writer.h Examining data/sigviewer-0.6.2/src/file_handling_impl/channel_manager_impl.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/channel_manager_impl.h Examining data/sigviewer-0.6.2/src/file_handling_impl/down_sampling_thread.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/down_sampling_thread.h Examining data/sigviewer-0.6.2/src/file_handling_impl/event_manager_impl.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/event_manager_impl.h Examining data/sigviewer-0.6.2/src/file_handling_impl/event_table_file_reader.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/event_table_file_reader.h Examining data/sigviewer-0.6.2/src/file_handling_impl/evt_writer.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/evt_writer.h Examining data/sigviewer-0.6.2/src/file_handling_impl/file_handler_factory_registrator.h Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_basic_header.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_basic_header.h Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_data_block.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_data_block.h Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_reader.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_reader.h Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_writer.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_writer.h Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_load_data_thread.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_load_data_thread.h Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_signal_cache.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_signal_cache.h Examining data/sigviewer-0.6.2/src/file_handling_impl/signal_cache.h Examining data/sigviewer-0.6.2/src/file_handling_impl/xdf_reader.cpp Examining data/sigviewer-0.6.2/src/file_handling_impl/xdf_reader.h Examining data/sigviewer-0.6.2/src/file_handling_impl/biosig_reader.cpp Examining data/sigviewer-0.6.2/src/gui/application_context.h Examining data/sigviewer-0.6.2/src/gui/background_processes.cpp Examining data/sigviewer-0.6.2/src/gui/background_processes.h Examining data/sigviewer-0.6.2/src/gui/color_manager.cpp Examining data/sigviewer-0.6.2/src/gui/color_manager.h Examining data/sigviewer-0.6.2/src/gui/event_view.h Examining data/sigviewer-0.6.2/src/gui/gui_action_command.cpp Examining data/sigviewer-0.6.2/src/gui/gui_action_command.h Examining data/sigviewer-0.6.2/src/gui/gui_action_factory.cpp Examining data/sigviewer-0.6.2/src/gui/gui_action_factory.h Examining data/sigviewer-0.6.2/src/gui/gui_action_factory_registrator.h Examining data/sigviewer-0.6.2/src/gui/main_window_model.h Examining data/sigviewer-0.6.2/src/gui/progress_bar.h Examining data/sigviewer-0.6.2/src/gui/signal_view_settings.cpp Examining data/sigviewer-0.6.2/src/gui/signal_view_settings.h Examining data/sigviewer-0.6.2/src/gui/signal_visualisation_model.cpp Examining data/sigviewer-0.6.2/src/gui/signal_visualisation_model.h Examining data/sigviewer-0.6.2/src/gui/signal_visualisation_modes.h Examining data/sigviewer-0.6.2/src/gui/signal_visualisation_view.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/adapt_channel_view_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/adapt_channel_view_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/adapt_event_view_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/adapt_event_view_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/close_file_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/close_file_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/event_editing_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/event_editing_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/help_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/help_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/mouse_mode_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/mouse_mode_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/open_file_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/signal_processing_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/signal_processing_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/undo_redo_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/undo_redo_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/zoom_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/zoom_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/commands/open_file_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/save_gui_command.cpp Examining data/sigviewer-0.6.2/src/gui_impl/commands/save_gui_command.h Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/basic_header_info_dialog.cpp Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/basic_header_info_dialog.h Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/channel_selection_dialog.cpp Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/channel_selection_dialog.h Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/event_time_selection_dialog.cpp Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/event_time_selection_dialog.h Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/event_types_selection_dialog.cpp Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/event_types_selection_dialog.h Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/resampling_dialog.cpp Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/resampling_dialog.h Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/scale_channel_dialog.cpp Examining data/sigviewer-0.6.2/src/gui_impl/dialogs/scale_channel_dialog.h Examining data/sigviewer-0.6.2/src/gui_impl/event_table/event_table_view_model.cpp Examining data/sigviewer-0.6.2/src/gui_impl/event_table/event_table_view_model.h Examining data/sigviewer-0.6.2/src/gui_impl/event_table/event_table_widget.h Examining data/sigviewer-0.6.2/src/gui_impl/event_table/event_table_widget.cpp Examining data/sigviewer-0.6.2/src/gui_impl/gui_helper_functions.cpp Examining data/sigviewer-0.6.2/src/gui_impl/gui_helper_functions.h Examining data/sigviewer-0.6.2/src/gui_impl/main_window.h Examining data/sigviewer-0.6.2/src/gui_impl/main_window_model_impl.cpp Examining data/sigviewer-0.6.2/src/gui_impl/main_window_model_impl.h Examining data/sigviewer-0.6.2/src/gui_impl/processed_signal_channel_manager.cpp Examining data/sigviewer-0.6.2/src/gui_impl/processed_signal_channel_manager.h Examining data/sigviewer-0.6.2/src/gui_impl/select_shown_channels_dialog.cpp Examining data/sigviewer-0.6.2/src/gui_impl/select_shown_channels_dialog.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/adapt_browser_view_widget.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/adapt_browser_view_widget.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/event_context_menu.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/event_context_menu.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/event_creation_widget.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/event_creation_widget.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/event_editing_widget.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/event_editing_widget.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/event_graphics_item.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/event_graphics_item.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/label_widget.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/label_widget.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/signal_browser_graphics_view.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/signal_browser_model_4.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/signal_browser_model_4.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/signal_browser_view.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/signal_browser_view.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/signal_graphics_item.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/signal_graphics_item.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/signal_grid_graphics_item.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/signal_grid_graphics_item.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/x_axis_widget_4.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/x_axis_widget_4.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/y_axis_widget_4.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser/y_axis_widget_4.h Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser_mouse_handling.cpp Examining data/sigviewer-0.6.2/src/gui_impl/signal_browser_mouse_handling.h Examining data/sigviewer-0.6.2/src/gui_impl/main_window.cpp Examining data/sigviewer-0.6.2/src/main.cpp Examining data/sigviewer-0.6.2/src/signal_processing/FFTReal.cpp Examining data/sigviewer-0.6.2/src/signal_processing/FFTReal.h Examining data/sigviewer-0.6.2/src/signal_processing/SPUC/butterworth.h Examining data/sigviewer-0.6.2/src/signal_processing/SPUC/chebyshev.h Examining data/sigviewer-0.6.2/src/signal_processing/SPUC/complex.h Examining data/sigviewer-0.6.2/src/signal_processing/SPUC/iir_1st.h Examining data/sigviewer-0.6.2/src/signal_processing/SPUC/iir_2nd.h Examining data/sigviewer-0.6.2/src/signal_processing/SPUC/spuc.h Examining data/sigviewer-0.6.2/src/signal_processing/notch_filter8.cpp Examining data/sigviewer-0.6.2/src/signal_processing/notch_filter8.h Examining data/sigviewer-0.6.2/src/tab_context.cpp Examining data/sigviewer-0.6.2/src/tab_context.h Examining data/sigviewer-0.6.2/src/tests/color_manager_tests.cpp Examining data/sigviewer-0.6.2/src/tests/color_manager_tests.h Examining data/sigviewer-0.6.2/src/tests/data_block_tests.cpp Examining data/sigviewer-0.6.2/src/tests/data_block_tests.h Examining data/sigviewer-0.6.2/src/tests/editing_commands_tests.cpp Examining data/sigviewer-0.6.2/src/tests/editing_commands_tests.h Examining data/sigviewer-0.6.2/src/tests/event_manager_tests.cpp Examining data/sigviewer-0.6.2/src/tests/event_manager_tests.h Examining data/sigviewer-0.6.2/src/tests/event_table_widget_tests.cpp Examining data/sigviewer-0.6.2/src/tests/event_table_widget_tests.h Examining data/sigviewer-0.6.2/src/tests/file_handling_tests.cpp Examining data/sigviewer-0.6.2/src/tests/file_handling_tests.h Examining data/sigviewer-0.6.2/src/tests/gui_tests.cpp Examining data/sigviewer-0.6.2/src/tests/gui_tests.h Examining data/sigviewer-0.6.2/src/tests/test.cpp Examining data/sigviewer-0.6.2/src/tests/test.h Examining data/sigviewer-0.6.2/src/tests/tests_dialog.cpp Examining data/sigviewer-0.6.2/src/tests/tests_dialog.h Examining data/sigviewer-0.6.2/src/tests/tests_factory.h FINAL RESULTS: data/sigviewer-0.6.2/src/file_handling_impl/biosig_reader.cpp:125:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (c_file_name, file_name.toLocal8Bit ().data()); data/sigviewer-0.6.2/src/file_handling/file_signal_reader.cpp:18:5: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand (time(NULL)); /* initialize random seed: */ data/sigviewer-0.6.2/src/base/signal_channel.cpp:25:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpstr[30]; data/sigviewer-0.6.2/src/file_handling_impl/biosig_reader.cpp:59:29: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). QString error = reader->open (file_path); data/sigviewer-0.6.2/src/file_handling_impl/biosig_reader.cpp:113:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). QString BioSigReader::open (QString const& file_name) data/sigviewer-0.6.2/src/file_handling_impl/biosig_reader.h:44:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). QString open (QString const& file_name); data/sigviewer-0.6.2/src/file_handling_impl/event_table_file_reader.cpp:33:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char g[10]; data/sigviewer-0.6.2/src/file_handling_impl/event_table_file_reader.cpp:36:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(g, "0x%04x", EventCodeGroups[k].groupid); data/sigviewer-0.6.2/src/file_handling_impl/event_table_file_reader.cpp:43:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(g, "0x%04x", ETD[k].groupid); data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_reader.cpp:63:29: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). QString error = reader->open (file_path); data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_reader.cpp:132:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). QString GDFFileSignalReader::open (QString const& file_path) data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_reader.cpp:140:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). reader_->open (file_path.toStdString()); data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_reader.h:66:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). QString open (QString const& file_path); data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_writer.cpp:63:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). modifier.open (new_file_path_.toStdString()); data/sigviewer-0.6.2/src/file_handling_impl/gdf/gdf_file_signal_writer.cpp:123:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). writer.open (new_file_path_.toStdString(), gdf::writer_ev_memory | gdf::writer_overwrite); data/sigviewer-0.6.2/src/file_handling_impl/xdf_reader.cpp:56:29: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). QString error = reader->open (file_path); data/sigviewer-0.6.2/src/file_handling_impl/xdf_reader.cpp:99:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). QString XDFReader::open (QString const& file_path) data/sigviewer-0.6.2/src/file_handling_impl/xdf_reader.h:64:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). QString open (QString const& file_path); data/sigviewer-0.6.2/src/gui_impl/commands/open_file_gui_command.cpp:77:41: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). resetActionTriggerSlot (OPEN_, SLOT(open())); data/sigviewer-0.6.2/src/gui_impl/commands/open_file_gui_command.cpp:142:26: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). void OpenFileGuiCommand::open () data/sigviewer-0.6.2/src/gui_impl/commands/open_file_gui_command.cpp:201:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file.open(file_path.toStdString()); data/sigviewer-0.6.2/src/gui_impl/commands/open_file_gui_command.h:48:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). void open (); data/sigviewer-0.6.2/src/gui_impl/commands/save_gui_command.cpp:282:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file.open(new_file_path.toStdString()); data/sigviewer-0.6.2/src/signal_processing/SPUC/iir_1st.h:50:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *iirf = fopen(file,"r"); data/sigviewer-0.6.2/src/signal_processing/SPUC/iir_2nd.h:57:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *iirf = fopen(file,"r"); data/sigviewer-0.6.2/src/tests/file_handling_tests.cpp:43:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). event_file.open(); data/sigviewer-0.6.2/src/tests/file_handling_tests.cpp:58:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). event_file_2.open(); ANALYSIS SUMMARY: Hits = 27 Lines analyzed = 23065 in approximately 0.52 seconds (43975 lines/second) Physical Source Lines of Code (SLOC) = 15174 Hits@level = [0] 4 [1] 0 [2] 25 [3] 1 [4] 1 [5] 0 Hits@level+ = [0+] 31 [1+] 27 [2+] 27 [3+] 2 [4+] 1 [5+] 0 Hits/KSLOC@level+ = [0+] 2.04297 [1+] 1.77936 [2+] 1.77936 [3+] 0.131804 [4+] 0.0659022 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.