Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CSeqManager.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CallManager.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/Connection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CpCall.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CpCallManager.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CpGatewayManager.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CpGhostConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CpIntMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CpMultiStringMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CpPeerCall.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/CpStringMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/DialogEventPublisher.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/LinePresenceBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/LinePresenceMonitor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/PresenceDialInServer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/SipConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/cp/SipPresenceMonitor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsButtonId.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsButtonInfo.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsButtonTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsHookswDev.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsHookswTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsKeybdDev.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsLampDev.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsLampId.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsLampInfo.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsLampTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsPhoneTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsTaoButton.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsTaoComponent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsTaoComponentGroup.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsTaoDisplay.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsTaoHookswitch.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsTaoLamp.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsTaoMicrophone.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsTaoRinger.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsTaoSpeaker.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/linux/PsHookswDevLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/linux/PsKeybdDevLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/linux/PsLampDevLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/wnt/PsHookswDevWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/wnt/PsKeybdDevWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/wnt/PsLampDevWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtAddessCapabilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtAddress.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtAddressEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtAddressForwarding.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtAddressListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtAudioCodec.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtCall.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtCallCapabilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtCallEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtCallListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtComponent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtComponentGroup.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtComponentGroupCapabilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtComponentIntChangeEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtComponentStringChangeEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtConfigDb.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtConnectionCapabilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtConnectionEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtConnectionListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtDefs.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtEventListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtEventMask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtGatewayInterface.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtMediaCapabilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtMetaEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtMultiCallEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtMultiCallMetaEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneButton.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneDisplay.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneExtSpeaker.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneGraphicDisplay.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneHookswitch.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneLamp.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneMicrophone.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneRinger.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneSpeaker.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneTerminal.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneTextDisplay.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtProvider.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtProviderCapabilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtProviderEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtProviderListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtSessionDesc.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtSingleCallMetaEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminal.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalCapabilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalComponentEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalComponentListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalConnectionCapabilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalConnectionEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalConnectionListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoAdaptor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoAddressAdaptor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoCallAdaptor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoClientTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoConnectionAdaptor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoDefs.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoEventDispatcher.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoEventListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoListenerClient.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoListenerEventMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoListenerManager.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoListeningTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoObject.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoObjectMap.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoPhoneComponentAdaptor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoProviderAdaptor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoProviderListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoReference.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoServerTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoString.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoTerminalAdaptor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoTerminalConnectionAdaptor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoTerminalConnectionListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoTransportAgent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tao/TaoTransportTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/GipsDefs.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/SipXEventDispatcher.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/SipXHandleMap.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/SipXMessageObserver.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiEvents.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/test/mp/MpTestConfig.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/test/mp/MyPlayerListenerHistoryKeeper.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/test/mp/MyPlayerListenerPoller.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/test/mp/MyStreamQueueHistoryKeeper.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/resource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CSeqManager.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CallManager.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/Connection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpCall.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpCallManager.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpGatewayManager.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpGhostConnection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpIntMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpMultiStringMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpStringMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/DialogEventPublisher.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/LinePresenceMonitor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/PresenceDialInServer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipConnection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipPresenceMonitor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/jni/testJni.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsButtonInfo.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsButtonTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsHookswDev.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsHookswTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsKeybdDev.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampDev.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampInfo.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsTaoButton.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsTaoComponent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsTaoComponentGroup.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsTaoDisplay.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsTaoHookswitch.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsTaoLamp.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsTaoMicrophone.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsTaoRinger.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsTaoSpeaker.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/linux/PsHookswDevLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/linux/PsLampDevLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/wnt/PsHookswDevWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/wnt/PsLampDevWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddessCapabilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddressForwarding.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAudioCodec.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCallCapabilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCallEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCallListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponentGroup.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponentGroupCapabilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConfigDb.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnectionCapabilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnectionEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnectionListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtEventListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtMediaCapabilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtMetaEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtMultiCallMetaEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneGraphicDisplay.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneHookswitch.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneLamp.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneMicrophone.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneTerminal.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneTextDisplay.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProviderCapabilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProviderListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtSessionDesc.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtSingleCallMetaEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtStubs.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalCapabilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalComponentEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalComponentListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnectionCapabilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnectionEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnectionListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/examples/TermConnExample1/main.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/examples/TermConnExample2/main.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAdaptor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoClientTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventDispatcher.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerEventMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerManager.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListeningTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoObjectMap.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderAdaptor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoReference.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoServerTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoString.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTransportAgent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTransportTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/SipXEventDispatcher.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/SipXHandleMap.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/SipXMessageObserver.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CallManagerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CpTestSupport.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CpTestSupport.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/jnibutton.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpTestConfig.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerPoller.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyStreamQueueHistoryKeeper.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtAddressForwardingTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtAddressTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtAudioCodecTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtCallEventTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtCallTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtConnectionEventTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtConnectionTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtEventTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtMediaCapabilitiesTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtPhoneTerminalTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtTerminalTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/SipSubcriptionTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestExternalTransport.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestExternalTransport.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistrar.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistrar.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistryCollection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistryCollection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistryData.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistryData.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestStunServerTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestStunServerTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTest.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConference.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConferenceAdv.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestSubscribe.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestTransfer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/CpMediaInterface.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/CpMediaInterfaceFactory.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/CpMediaInterfaceFactoryImpl.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/MiDtmfNotf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/MiIntNotf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/MiNotification.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/MiProgressNotf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/MiRtpStreamActivityNotf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/MiStringNotf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/CpMediaInterface.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/CpMediaInterfaceFactory.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/CpMediaInterfaceFactoryFactory.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/CpMediaInterfaceFactoryImpl.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/IMediaSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/MiDtmfNotf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/MiIntNotf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/MiNotification.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/MiProgressNotf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/MiRtpStreamActivityNotf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/mi/MiStringNotf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/include/CpPhoneMediaInterface.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/include/CpTopologyGraphFactoryImpl.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/include/CpTopologyGraphInterface.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/include/MaNotfTranslatorDispatcher.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/include/sipXmediaFactoryImpl.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpPhoneMediaInterface.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpTopologyGraphFactoryImpl.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpTopologyGraphInterface.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/MaNotfTranslatorDispatcher.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/sipXmediaFactoryImpl.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/CpCryptoTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/CpPhoneMediaInterfaceTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/playback_prompt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/record_prompt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/sine_330hz_16b_8k_signed.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/sine_530hz_16b_8k_signed.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/FilterBank.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/HandsetFilterBank.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/HandsetFilterbankWindows.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAgcBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAgcSimple.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAndroidAudioRecord.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAndroidAudioTrack.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAndroidX_XAudioRecord.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAndroidX_XAudioTrack.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpArrayBuf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioAbstract.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioBuf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioFileDecompress.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioFileOpen.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioFileUtils.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioOutputConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioResource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioResourceConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioUtils.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpAudioWaveFileRead.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpBridgeAlgBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpBridgeAlgLinear.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpBridgeAlgSimple.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpBuf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpBufPool.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpBufferMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpCallFlowGraph.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpCodec.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpCodecFactory.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpCodecInfo.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpCoreAudioHardware.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDTMFDetector.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDataBuf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDecoderBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDecoderPayloadMap.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDspUtils.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDspUtilsConvertVect.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDspUtilsIntSqrt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDspUtilsSerials.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDspUtilsShift.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDspUtilsSum.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpDspUtilsSumVect.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpEncoderBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpFlowGraphBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpFlowGraphMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpInputDeviceDriver.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpInputDeviceManager.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpIntResourceMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpJbeFixed.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpJitterBuffer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpJitterBufferEstimation.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpMMTimer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpMMTimerPosix.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpMMTimerWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpMediaTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpMediaTaskMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpMisc.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpOss.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpOssContainer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpOutputDeviceDriver.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpOutputDeviceManager.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpPackedResourceMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpPlayer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpPlayerEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpPlayerListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpPlcBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpPlcSilence.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpPlgStaffV1.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpQueuePlayerListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpRawAudioBuffer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpResNotificationMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpResampler.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpResamplerSpeex.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpResource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpResourceConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpResourceFactory.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpResourceMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpResourceSortAlg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpResourceTopology.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpRtpBuf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpRtpInputConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpRtpOutputConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpSetSocketsMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpSineWaveGeneratorDeviceDriver.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpSpeakerSelectBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpStaticCodecInit.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpStreamFeeder.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpStreamMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpStreamPlayer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpStreamPlaylistPlayer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpStreamQueuePlayer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpStringResourceMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpSyncFlowgraphMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpToneResourceMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpTopologyGraph.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpTypes.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpUdpBuf.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpVadBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpVadSimple.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpVideoResource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpidAndroid.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpidCoreAudio.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpidOss.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpidWinMM.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpodAndroid.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpodBufferRecorder.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpodCoreAudio.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpodOss.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpodWinMM.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprAudioFrameBuffer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprBridge.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprBridgeConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprBridgeSetGainsMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprDecode.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprDecodeConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprDecodeSelectCodecsMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprDejitter.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprDelay.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprDelayConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprEchoSuppress.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprEncode.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprEncodeConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprFromFile.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprFromFileConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprFromInputDevice.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprFromInputDeviceConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprFromMic.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprFromNet.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprFromStream.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprHook.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprHookConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprMixer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprNull.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprNullAec.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprNullAecConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprNullConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprRecorder.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprRecorderConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprRtpDispatcher.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprRtpDispatcherActiveSsrcs.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprRtpDispatcherIpAffinity.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprRtpInputConnectionConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprRtpOutputConnectionConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprRtpStartReceiveMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprSpeakerSelector.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprSpeakerSelectorConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprSpeexEchoCancel.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprSpeexPreProcess.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprSpeexPreProcessConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprSplitter.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprSplitterConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprToNet.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprToOutputDevice.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprToOutputDeviceConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprToOutputDeviceWithAecConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprToSpkr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprToneGen.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprToneGenConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprVad.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprVadConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprVoiceActivityNotifier.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprVoiceActivityNotifierConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprnDTMFMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprnIntMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprnProgressMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprnRtpStreamActivityMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprnStringMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/NetInTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/RtpHeader.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamBufferDataSource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamDataSource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamDataSourceListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamDecoderListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamDefs.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamFileDataSource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamFormatDecoder.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamHttpDataSource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamQueueMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamQueueingFormatDecoder.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamRAWFormatDecoder.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamWAVFormatDecoder.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/codecs/PlgDefsV1.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/dmaTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/dsplib.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/dtmflib.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/mpau.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/BaseClass.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/ByeReport.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IBaseClass.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IByeReport.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IGetByeInfo.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IGetReceiverStatistics.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IGetSenderStatistics.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IGetSrcDescription.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/INetDispatch.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/INetworkChannel.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/INetworkRender.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/INetworkSource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTCPConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTCPControl.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTCPHeader.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTCPNotify.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTCPRegister.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTCPRender.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTCPSession.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTCPStatistics.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTPDispatch.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IRTPHeader.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/IReceiverReport.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/ISDESReport.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/ISenderReport.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/ISetReceiverStatistics.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/ISetSenderStatistics.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/ISetSrcDescription.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/Message.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/MsgQueue.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/NetworkChannel.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/RTCManager.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/RTCPConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/RTCPHeader.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/RTCPRender.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/RTCPSession.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/RTCPSource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/RTCPTimer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/RTPHeader.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/ReceiverReport.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/RtcpConfig.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SenderReport.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SourceDescription.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLink.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/DSPlib.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/FilterBank.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/HandsetFilterBank.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MicThreadWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAgcBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAgcSimple.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAndroidAudioRecord.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAndroidAudioTrack.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAndroidX_XAudioRecord.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAndroidX_XAudioTrack.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpArrayBuf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioAbstract.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioBuf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioFileDecompress.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioFileOpen.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioFileUtils.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioOutputConnection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioWaveFileRead.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgSimple.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBuf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBufPool.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBufferMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCodec.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCodecFactory.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpDTMFDetector.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpDataBuf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpDecoderBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpDecoderPayloadMap.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpDspUtils.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpEncoderBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpFlowGraphBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpFlowGraphMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpInputDeviceDriver.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpInputDeviceManager.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpJbeFixed.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpJitterBuffer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpJitterBufferEstimation.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMMTimer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMMTimerPosix.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMMTimerWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMediaTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMediaTaskMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOss.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOssContainer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOutputDeviceDriver.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOutputDeviceManager.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpPlayer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpPlayerEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpPlcBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpPlcSilence.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpPlgStaffV1.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpRawAudioBuffer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResNotificationMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResampler.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResamplerSpeex.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResource.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResourceFactory.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResourceMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResourceSortAlg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResourceTopology.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpRtpBuf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpRtpInputConnection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpRtpOutputConnection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpSineWaveGeneratorDeviceDriver.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpSpeakerSelectBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStaticCodecInit.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamFeeder.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamPlayer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamPlaylistPlayer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamQueuePlayer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpTopologyGraph.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpTypes.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpUdpBuf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpVadBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpVadSimple.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpVideoResource.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidAndroid.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidCoreAudio.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidOss.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidWinMM.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodAndroid.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodBufferRecorder.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodCoreAudio.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodOss.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodWinMM.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprAudioFrameBuffer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprBridge.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprDecode.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprDejitter.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprDelay.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprEchoSuppress.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprEncode.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromFile.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromInputDevice.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromMic.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromNet.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromStream.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprHook.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprMixer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprNull.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprNullAec.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRtpDispatcher.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRtpDispatcherActiveSsrcs.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRtpDispatcherIpAffinity.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprSpeakerSelector.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprSpeexEchoCancel.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprSpeexPreProcess.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprSplitter.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToNet.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToOutputDevice.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToSpkr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToneGen.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprVad.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprVoiceActivityNotifier.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprnDTMFMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprnIntMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprnProgressMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprnRtpStreamActivityMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprnStringMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/NetInTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/SpeakerThreadWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamBufferDataSource.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamDataSource.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamDataSourceListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamDecoderListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamFileDataSource.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamFormatDecoder.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamHttpDataSource.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamQueueMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamQueueingFormatDecoder.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamRAWFormatDecoder.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgaac/plgaac.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgamr/PlgAmr.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgamrwb/PlgAmrWB.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgg722/plgg722.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgg726/g726-16.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgg726/g726-24.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgg726/g726-32.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgg726/g726-40.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgg726/plgg726.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgg726/plgg726.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgg729/PlgG729.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plggsm/PlgGsm.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgilbc/PlgIlbc.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16Wrapper11025.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16Wrapper16000.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16Wrapper22050.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16Wrapper24000.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16Wrapper32000.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16Wrapper44100.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16Wrapper48000.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/CodecL16Wrapper8000.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgl16/PlgL16.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgopus/plgopus.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgpcmapcmu/CodecPcmaWrapper.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgpcmapcmu/CodecPcmuWrapper.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgpcmapcmu/G711.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgpcmapcmu/PlgPcmaPcmu.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgspeex/PlgSpeex.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgspeex/plgspeex.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgspeex/speex_nb.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgspeex/speex_uwb.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgspeex/speex_wb.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgtones/PlgTones.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dtmflib.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/mpG711.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/mpau.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/BaseClass.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/ByeReport.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/Message.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/MsgQueue.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/NetworkChannel.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCManager.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPConnection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPHeader.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPRender.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPSession.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPSource.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPTimer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTPHeader.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/ReceiverReport.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SenderReport.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpAudioBufTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpBufTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpCodecsPerformanceTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpDspUtilsTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpFlowGraphTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpGenericResourceTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpGenericResourceTest.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputDeviceDriverTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputDeviceManagerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputOutputFrameworkTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpMMTimerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpMediaTaskTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpOutputDriverTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpOutputFrameworkTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpOutputManagerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpResourceTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpResourceTopologyTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpTestResource.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpTestResource.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpWBInputOutputDeviceTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprBridgeTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprBridgeTestWB.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprDelayTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprFromFileTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprFromMicTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprMixerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprSpeakerSelectorTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprSplitterTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprToSpkrTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MprToneGenTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/RtcpParserTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/WBMixerTestReversedTones.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/WBMixerTestTones.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/dtmf5_48khz_16b_signed.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/SipXportLibInit.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/HostAdapterAddress.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/IStunSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/NatMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsAssert.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsAtomics.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsAtomicsAndroid.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsBSem.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsCSem.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsCallback.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsConfigDb.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsConfigEncryption.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsConnectionSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsContact.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsContactList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDatagramSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDateTime.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDefs.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDirBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsEncryption.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsEventMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsExcept.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsFS.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsFileBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsFileInfoBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsFileIteratorBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsFileSystem.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsIntPtrMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsIntTypes.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsLock.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsLockingList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsMsgDispatcher.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsMsgPool.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsMsgQ.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsMulticastSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsMutex.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNameDb.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNameDbInit.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatAgentTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatConnectionSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatDatagramSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatKeepaliveListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatServerSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatSocketBaseImpl.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNotification.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsPathBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsProcess.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsProcessIterator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsProcessMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsProtectEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsProtectEventMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsProtectEventMgrInit.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsPtrMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsQueuedEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsRWMutex.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsReadLock.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsRpcMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSSL.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSSLConnectionSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSSLServerSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsServerSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsServerTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSharedLibMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsStatus.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSyncBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSysLog.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSysLogFacilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSysLogMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSysLogTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTLS.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTLSClientConnectionSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTLSConnectionSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTLSServerConnectionSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTLSServerSocket.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTaskId.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTime.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTimeLog.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTimer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTimerMsg.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTimerTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTokenizer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsUtil.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsWriteLock.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunUtils.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/TurnMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/WinCE/WinCEFixups.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/AdapterInfo.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsBSemLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsCSemLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsDateTimeLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsDirLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsFileInfoLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsFileIteratorLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsFileLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsLinuxDefs.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsMutexLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsPathLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsProcessIteratorLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsProcessLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsRWMutexLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsSharedLibMgrLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsTaskLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/OsUtilLinux.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/host_address.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/pt_csem.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/linux/pt_mutex.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/msinttypes/inttypes.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/msinttypes/stdint.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/shared/OsMsgQShared.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/shared/OsRWMutexShared.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/shared/OsTimerMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsBSemWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsCSemWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsDateTimeWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsDirWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsFileInfoWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsFileIteratorWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsFileSystemWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsFileWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsMutexWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsPathWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsProcessIteratorWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsProcessWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsSharedLibMgrWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsTaskWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/OsUtilWnt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/WIndowsAdapterInfo.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/getWindowsDNSServers.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/Plugin.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/PluginHooks.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlBool.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlChainPool.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlContainable.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlContainableAtomic.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlContainablePair.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlContainer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlCopyableContainable.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlCopyableSList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlCopyableSortedList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlCrc32.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlCryptoData.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlCryptoKey.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlCryptoKeyRsa.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlCryptoKeySym.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlDList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlDListIterator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlDateTime.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlDefs.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlHashBag.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlHashBagIterator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlHashMap.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlHashMapIterator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlHistogram.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlInit.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlInt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlIntPtr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlIterator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlLink.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlListIterator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlLongLongInt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlNameValueTokenizer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlObservable.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlObservableImpl.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlRandom.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlRegex.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlRscStore.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlRscTrace.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlSList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlSListIterator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlSerialized.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlSortedList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlSortedListIterator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlString.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlTokenizer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlVoidPtr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/XmlContent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/xmlparser/ExtractContent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/xmlparser/TiXmlIterator.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/xmlparser/tinystr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/xmlparser/tinyxml.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/hmac-sha1/hmac-sha1.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/hmac-sha1/sha1.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/hmac-sha1/sha1.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/NatMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsAssert.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsCSemBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsCallback.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsContact.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsContactList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDatagramSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDirBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsEncryption.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsEventMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsExcept.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileInfoBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileIteratorBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileSystem.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsIntPtrMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsLockingList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsMsgDispatcher.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsMsgPool.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsMsgQ.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsMulticastSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNameDb.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNameDbInit.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatServerSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatSocketBaseImpl.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProcessBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProcessIteratorBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProcessMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProtectEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProtectEventMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProtectEventMgrInit.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPtrMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsQueuedEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsRpcMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSL.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSLConnectionSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSLServerSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsServerSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsServerTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSharedLibMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocketCrypto.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLog.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogFacilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLS.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSClientConnectionSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSConnectionSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSServerConnectionSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSServerSocket.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTime.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTimeLog.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTimer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTimerMsg.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTimerTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTokenizer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/TurnMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/wince_strftime.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsBSemWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsCSemWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsDateTimeWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsDirWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsFileInfoWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsFileIteratorWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsFileSystemWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsFileWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsMutexWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsPathWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsProcessIteratorWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsProcessWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsSharedLibMgrWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsTaskWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsTimerMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsUtilWnt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/AdapterInfo.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsBSemLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsCSemLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsDateTimeLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsDirLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsFileInfoLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsFileIteratorLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsFileLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsMutexLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsPathLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessIteratorLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsRWMutexLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsSharedLibMgrLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsUtilLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/clock_gettime.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/host_address.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/pt_csem.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/pt_mutex.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsTaskLinux.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/osPrintf.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/shared/OsMsgQShared.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/shared/OsRWMutexShared.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/shared/OsTimerMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/main.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/ipcperf.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/main.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsAdapterInfoTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsCallbackTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsConfigDbTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsContactListTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsContactTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsDirTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsEventTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileIteratorTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileSystemTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsLockTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsMsgDispatcherTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsMsgQTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsMutexTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsNameDbTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsPathTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsProcessIteratorTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsProcessMgrTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsProcessTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSemTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsServerTaskTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSharedLibMgrTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTestUtilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTestUtilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTimeTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTimerTaskTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTimerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/StunMessageTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/StunMessageTest.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/TurnMessageTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/TurnMessageTest.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/UnitTestLogHooks.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTest.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestAsserts.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestClass.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestClass.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestConstructor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestConstructor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestPointFailure.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestPointFailure.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/bar.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/com_sipez_unit_UnitTestActivity.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/foo.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/main.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/unitJni.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestMonitor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestMonitor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestOsSysLogListener.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestOsSysLogListener.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestOutputter.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestOutputter.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestRunner.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestRunner.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestTemplate.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestUtilities.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestUtilities.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/unitmain.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunittests.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/testplugin/TestPlugin.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/PluginHooksTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/TestPlugin.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlChainTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlContainableTestStub.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlContainableTestStub.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlCrc32Test.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlCryptoTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlDList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlDListIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashBag.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashBagIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashMap.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashMapIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashMapPerformance.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlInt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlLinkTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlListPerformance.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlLongLongInt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlPerformanceStrings.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlRegex.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSListIteratorTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedListIteratorTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_DestructiveManipulators.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlTokenizerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlVoidPtr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/XmlContentTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/Plugin.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/PluginHooks.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlBool.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlChainPool.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlContainable.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlContainableAtomic.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlContainablePair.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlContainer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCopyableContainable.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCopyableSList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCopyableSortedList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCrc32.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoData.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKey.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKeyRsa.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKeySym.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlDList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlDListIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlDateTime.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlHashBag.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlHashBagIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlHashMap.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlHashMapIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlHistogram.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlInit.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlInt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlIntPtr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlLink.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlListIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlLongLongInt.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlNameValueTokenizer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRandom.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRegex.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscStore.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlSList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlSListIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlSortedList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlSortedListIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlTokenizer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlVoidPtr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/XmlContent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/ExtractContent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/TiXmlIterator.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxmlerror.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxmlparser.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/include/sdp/Sdp.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/include/sdp/SdpCandidate.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/include/sdp/SdpCandidatePair.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/include/sdp/SdpCodec.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/include/sdp/SdpCodecList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/include/sdp/SdpDefaultCodecFactory.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/include/sdp/SdpHelperResip.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/include/sdp/SdpMediaLine.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCandidate.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCandidatePair.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCodec.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCodecList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpDefaultCodecFactory.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpHelperResip.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/test/sdp/SdpCodecListTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/test/sdp/SdpCodecTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/test/sdp/SdpSetGetTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/test/sdp/sdpTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/dialogwatch/dialogwatch.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/doc/developer/scores/timing.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/doc/developer/scores/timing_fixed.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/examples/im/basicImClient.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/examples/xmlrpc/xmlrpcClient.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/HttpBody.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/HttpConnection.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/HttpConnectionMap.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/HttpMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/HttpRequestContext.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/HttpServer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/HttpService.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/MailAttachment.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/MailMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/MimeBodyPart.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/NameValuePair.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/NameValuePairInsensitive.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/NetAttributeTokenizer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/NetBase64Codec.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/NetMd5Codec.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/PidfBody.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/ProvisioningAgent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/ProvisioningAgentXmlRpcAdapter.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/ProvisioningAttrList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/ProvisioningClass.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/QoS.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SdpBody.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SdpHelper.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipClient.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipConfigServerAgent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipContactDb.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipDialog.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipDialogEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipDialogMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipDialogMonitor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipLine.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipLineCredentials.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipLineEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipLineList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipLineMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipMessage.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipMessageEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipMessageList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipNonceDb.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipNotifyStateTask.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipObserverCriteria.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipPimClient.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipPresenceEvent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipProtocolServerBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipPublishContentMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipPublishServer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipPublishServerEventStateCompositor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipPublishServerEventStateMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipRefreshManager.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipRefreshMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipRequestContext.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipResourceList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipServerBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipServerBroker.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipSession.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipSrvLookup.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipSubscribeClient.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipSubscribeServer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipSubscribeServerEventHandler.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipSubscriptionMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipTcpServer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipTlsServer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipTransaction.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipTransactionList.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipUdpServer.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipUserAgent.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipUserAgentBase.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipUserAgentStateless.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/StateChangeNotifier.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/TapiMgr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/Url.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/XmlRpcBody.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/XmlRpcDispatch.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/XmlRpcMethod.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/XmlRpcRequest.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/XmlRpcResponse.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/pk12wrapper.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/bzero.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/ns_name.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/poll.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/res_config.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/res_info.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/rr.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/types.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/arpa/inet.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/arpa/nameser.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/crypt.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/inet_aton.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/netinet/in.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/nterrno.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/res_signal.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/resolv/resolv.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sys/param.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sys/uio.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/utilNT.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/AuthCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/Command.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/CommandMsgProcessor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/CommandProcessor.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/ExitCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/HelpCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/HistoryCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/HttpGetCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/RegisterCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/RespondCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/RespondTemplate.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/SipLSendCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/SipLogCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/include/siptest/SipSendCommand.h
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/AuthCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/Command.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/CommandMsgProcessor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/CommandProcessor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/ExitCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/HelpCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/HistoryCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/HttpGetCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/RegisterCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/RespondCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/RespondTemplate.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipLSendCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipLogCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipSendCommand.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/sipdrive.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpBody.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpConnection.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpConnectionMap.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpRequestContext.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpService.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailAttachment.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MimeBodyPart.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NameValuePair.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NameValuePairInsensitive.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetAttributeTokenizer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetBase64Codec.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/PidfBody.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/ProvisioningAgent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/ProvisioningAgentXmlRpcAdapter.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/ProvisioningAttrList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/ProvisioningClass.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpHelper.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipClient.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipConfigServerAgent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipContactDb.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogMonitor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLine.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineCredentials.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessageEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessageList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNonceDb.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipObserverCriteria.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPimClient.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPresenceEvent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipProtocolServerBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPublishContentMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPublishServer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPublishServerEventStateCompositor.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPublishServerEventStateMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRequestContext.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipResourceList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipServerBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipServerBroker.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSession.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSrvLookup.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeServer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeServerEventHandler.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscriptionMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTcpServer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTlsServer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransactionList.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgentBase.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgentStateless.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SmimeBody.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/StateChangeNotifier.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/TapiMgr.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcBody.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcMethod.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcRequest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/pk12wrapper.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/android_res_utils.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/bzero.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/memset.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/ns_name.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/ns_netint.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_comp.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_data.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_free.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_mkquery.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_naptr.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_print.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_send.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/wnt/inet_addr.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/wnt/writev.c
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/SdpHelperTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpBodyTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpMessageTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NameValuePairInsensitiveTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NameValuePairTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetAttributeTokenizerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetMd5CodecTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SdpBodyTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipDialogEventTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipDialogMonitorTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipDialogTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPresenceEventTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipRefreshManagerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipServerShutdownTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSubscribeServerTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSubscriptionClientTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSubscriptionMgrTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipUserAgentTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/XmlRpcTest.cpp
Examining data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp

FINAL RESULTS:

data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dtmflib.cpp:711:9:  [5] (buffer) gets:
  Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
        gets(x);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dtmflib.cpp:903:17:  [5] (buffer) gets:
  Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
                gets(s);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dtmflib.cpp:907:17:  [5] (buffer) gets:
  Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
                gets(s);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dtmflib.cpp:914:17:  [5] (buffer) gets:
  Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
                gets(s);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dtmflib.cpp:918:17:  [5] (buffer) gets:
  Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
                gets(s);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileSystem.cpp:98:9:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
    if (chmod(rPath.data(),mode) != -1)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsFileLinux.cpp:134:9:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
    if (chmod(mFilename,mode) != -1)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CSeqManager.cpp:128:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(cTemp, "Identifier: %s, CSeq=%d, inProgress=%d\n",               
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CallManager.cpp:318:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(eventDescription, "%s (%d)", subTypeString.data(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpCallManager.cpp:493:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(buffer, "%d_%"PRId64"_%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpCallManager.cpp:511:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
   sprintf(buffer, "%s_%"PRId64"d_%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpMultiStringMessage.cpp:217:9:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
        sprintf(intDataString, "Int1: %"PRIdPTR, mInt1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpMultiStringMessage.cpp:223:9:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
        sprintf(intDataString, "Int2: %"PRIdPTR, mInt2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpMultiStringMessage.cpp:229:9:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
        sprintf(intDataString, "Int3: %"PRIdPTR, mInt3);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpMultiStringMessage.cpp:235:9:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
        sprintf(intDataString, "Int4: %"PRIdPTR, mInt4);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpMultiStringMessage.cpp:241:9:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
        sprintf(intDataString, "Int5: %"PRIdPTR, mInt5);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpMultiStringMessage.cpp:247:9:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
        sprintf(intDataString, "Int6: %"PRIdPTR, mInt6);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipConnection.cpp:6152:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(buffer, "%d_%"PRId64"d_%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsButtonInfo.cpp:45:12:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
           strcpy(mpButtonName, name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsButtonInfo.cpp:57:12:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
           strcpy(mpButtonName, rPsButtonInfo.mpButtonName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsButtonInfo.cpp:93:12:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
           strcpy(mpButtonName, rhs.mpButtonName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampInfo.cpp:38:12:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
           strcpy(mpLampName, pName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampInfo.cpp:50:12:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
           strcpy(mpLampName, rPsLampInfo.mpLampName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampInfo.cpp:87:12:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
           strcpy(mpLampName, rhs.mpLampName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampInfo.cpp:130:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(mpLampName, pLampName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:140:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mpName, rPtComponent.mpName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:170:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mpName, rhs.mpName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:200:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mpInfo, buttonInfo);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:342:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(rpInfo, arg.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalComponentEvent.cpp:180:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(stringData, mStringData1.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalComponentEvent.cpp:186:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(stringData, mStringData2.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalComponentEvent.cpp:192:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(stringData, mStringData3.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalEvent.cpp:48:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mpTerminalName, rPtTerminalEvent.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalEvent.cpp:85:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mpTerminalName, rhs.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalEvent.cpp:121:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mpTerminalName, terminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:38:12:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
           strcpy(mpTerminalName, pTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:53:12:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
           strcpy(mpTerminalName, rPtTerminalListener.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:84:12:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
           strcpy(mpTerminalName, rhs.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:103:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy (mpTerminalName, name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:44:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(mName, phoneNumber);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventListener.cpp:39:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(mpTerminalName, pTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventListener.cpp:52:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mpTerminalName, rTaoEventListener.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventListener.cpp:88:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mpTerminalName, rhs.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1124:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CREATED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1128:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"ALERTING:\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1132:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"DIALING\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1136:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"ESTABLISHED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1140:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"INITIATED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1144:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"DISCONNECTED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1148:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"FAILED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1152:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"NETWORK_ALERTING\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1156:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"NETWORK_REACHED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1160:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"OFFERED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1164:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"QUEUED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1168:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"UNKNOWN\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1172:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"TC_CREATED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1176:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"TC_RINGING\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1180:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"TC_HELD\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1184:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"TC_TALKING\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1188:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"TC_DROPPED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1192:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"TC_IDLE\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1196:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"TC_IN_USE\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1200:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"TC_UNKNOWN\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1204:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_TRANSMISSION_ENDED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1208:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_ACTIVE\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1212:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_INVALID\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1216:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_STARTING_STARTED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1220:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_STARTING_ENDED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1224:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_ENDING_STARTED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1228:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_ENDING_ENDED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1232:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_PROGRESS_STARTED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1236:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_PROGRESS_ENDED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1240:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_SNAPSHOT_STARTED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1244:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_SNAPSHOT_ENDED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1248:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_ADD_PARTY_STARTED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1252:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_ADD_PARTY_ENDED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1256:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_REMOVE_PARTY_STARTED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1260:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_REMOVE_PARTY_ENDED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1264:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_MERGE_STARTED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1268:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_MERGE_ENDED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1272:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_TRANSFER_STARTED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1276:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"CL_META_TRANSFER_ENDED\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1280:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(name, (char*)"BOGUS EVENT\0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:468:9:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
        sscanf(mBody.data(), "st=%d id=%d cmd=%c oh=%d sh=%d qh=%d ac=%d %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderListener.cpp:43:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mTerminalName, terminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionListener.cpp:45:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(mTerminalName, terminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/SipXMessageObserver.cpp:332:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(pNewContact->cIpAddress, pContact->cIpAddress);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/SipXMessageObserver.cpp:340:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(sipxContact.cInterface, pContact->cInterface);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/SipXMessageObserver.cpp:341:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(sipxContact.cIpAddress, pContact->cIpAddress);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/SipXMessageObserver.cpp:353:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(sipxContact.cInterface, pNewContact->cInterface);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/SipXMessageObserver.cpp:354:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(sipxContact.cIpAddress, pNewContact->cIpAddress);                        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:476:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(szBuf, "sip:%s@%s:%d", szIdentity, localAddress.data(), pInst->pSipUserAgent->getUdpPort()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:6829:13:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
            sprintf(szVersion, SIPXTAPI_VERSION_STRING, SIPXTAPI_VERSION,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8035:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(szAddress, utlAddresses[i]->mAddress.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8036:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(szAdapter, utlAddresses[i]->mAdapter.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8781:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(szUsername, temp) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8786:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(szHostname, temp) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8856:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(szUrl, results) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp:40:18:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define SNPRINTF _snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp:42:18:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define SNPRINTF snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CallManagerTest.cpp:456:10:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
         sscanf(callId.data(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CallManagerTest.cpp:462:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(msg, "Cannot parse call ID '%s'", callId.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CallManagerTest.cpp:465:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(msg, "Actual prefix '%s' does not match expected prefix '%s' in call ID '%s'",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CallManagerTest.cpp:478:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg, "Actual suffix '%s' does not match expected suffix '%s' in call ID '%s'",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CallManagerTest.cpp:517:8:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
       sprintf(msg,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:62:14:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
             sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:91:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf(szUrl, "http://%s/nums/1.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:137:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf(szUrl, "http://%s/nums/1.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:193:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, 1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:215:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, 1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:238:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, 1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:267:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, 1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:293:8:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
       sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, 1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:393:8:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
       sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, 1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:441:14:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
             sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:475:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf(szUrl, "http://%s/longstream.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:510:14:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
             sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:541:23:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                      sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:69:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:112:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:164:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:240:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:318:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:416:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/longstream.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:496:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/longstream.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:596:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/longstream.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:674:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/%d.wav", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:717:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/%d.wav", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:59:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "Playlist +http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:133:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "Playlist +http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:223:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "Playlist +http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:308:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "Playlist +http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:389:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "Playlist +http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:486:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "Playlist +http://%s/longstream.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:566:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "Playlist +http://%s/longstream.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:661:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/0.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:61:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:89:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:116:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:145:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:157:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:186:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:198:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:212:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(szUrl, "http://%s/nums/%d.raw", BASE_URL, i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:242:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/longstream.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:256:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/8.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:286:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/1.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:288:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/2.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:290:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/3.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:292:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/4.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:294:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/5.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:296:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/doesnotexist.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:334:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/8.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:344:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/9.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:376:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/longstream.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:401:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/noexist.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:408:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/1.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:415:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/noexist.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:423:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/2.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:446:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/noexist.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:453:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/1.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:460:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/noexist.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:468:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/nums/2.wav", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:490:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(szUrl, "http://%s/noexist.raw", BASE_URL) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:74:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer2, "hLine-%d: %s", hLine, szBuffer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:84:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer2, "hLine-%d: %s", hLine, szBuffer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:93:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer2, "hLine-%d: %s", hLine, szBuffer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:102:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer2, "hLine-%d: %s", hLine, szBuffer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:110:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "INFO MSG: %s, %d", pInfoInfo->pContent, pInfoInfo->nContentLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:119:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "INFO MSG: %s, %d", pInfoInfo->pContent, pInfoInfo->nContentLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:162:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "hLine-%d: %s", hLine, szMsg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:170:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "hLine-%d: %s", hLine, szMsg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:223:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
        strcat(szRC, array[i]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:707:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer2, "<CALL> hLine=%d, hCall=%d: %s", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:724:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer2, "<LINE> hLine=%d: %s", hLine, szBuffer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:735:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "<MSG> hLine=%d: %s", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:748:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "<INFO STATUS> hInfo=%d: status=%d, responseCode=%d, responseText=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:784:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "<INFO> hCall=%d, hLine=%d, from=%s, szUserAgent=%s, type=%s, content=%s, len=%d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:804:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "<CONFIG> event=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:818:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "<SECURITY> event=%s, cause=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:843:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "<MEDIA> event=%s, cause=%s type=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:875:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "<KEEPALIVE> event=%s, cause=%s type=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:895:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer3, "<SUBSTATUS> state=%s, cause=%s", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:915:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(szBuffer, "<NOTIFY> hSub=%d, contentType=%s, contentLength=%d, content=%s", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestExternalTransport.cpp:48:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
    strcpy(gpUserData1, (char*)pUserData);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestExternalTransport.cpp:71:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
    strcpy(gpUserData2, (char*)pUserData);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestStunServerTask.cpp:112:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(cMsg, "TestStunServerTask:setTestMode(%s)",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:150:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(cBuf, &cBuf[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpMisc.h:26:17:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define Zprintf printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/BaseClass.h:30:18:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define osPrintf printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioOutputConnection.cpp:45:26:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define debugPrintf    printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:79:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
   len = sprintf(z, "%s in(", (const char*)*this);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:824:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(created_micNamePtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:832:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(created_echoOutNamePtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:840:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(created_spkrNamePtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:848:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(created_mic32NamePtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:856:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(created_spkr32NamePtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:864:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(created_echoIn8NamePtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:872:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(created_echoIn32NamePtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:885:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
   strcpy(saved_playFilename,playFilename);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:886:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
   strcpy(saved_baseName,baseName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:887:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
   strcpy(saved_endName,endName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpJitterBuffer.cpp:60:19:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define dprintf printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMediaTask.cpp:717:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_MP, PRI_ERR, "MpMediaTask::handleManage: too many flow graphs!\n");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMediaTask.cpp:723:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_MP, PRI_WARNING, "MpMediaTask::handleManage: flow graph already managed!!\n");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp:223:13:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
            sprintf(buf, fmt, a, b, c, d, e, f);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamPlayer.cpp:58:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_STREAMING, PRI_ERR, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamPlayer.cpp:91:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_STREAMING, PRI_ERR, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamPlayer.cpp:206:10:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
         syslog(FAC_STREAMING, PRI_CRIT, "Failed to create thread for MpStreamPlayer") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamQueuePlayer.cpp:73:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_STREAMING, PRI_CRIT, "Failed to create thread for MpStreamQueuePlayer") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprDecode.cpp:70:19:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define dprintf printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprDejitter.cpp:44:26:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define debugPrintf    printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprEncode.cpp:48:19:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define dprintf printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromInputDevice.cpp:46:26:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define debugPrintf    printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToOutputDevice.cpp:47:26:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define debugPrintf    printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamRAWFormatDecoder.cpp:68:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_STREAMING, PRI_CRIT, "Failed to create thread for StreamWAVFormatDecoder") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:80:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_STREAMING, PRI_CRIT, "Failed to create thread for StreamWAVFormatDecoder") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:159:13:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
            syslog(FAC_STREAMING, PRI_ERR, "StreamWAVFormatDecoder::validDecoder (RIFF not detected.)");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:258:17:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                syslog(FAC_STREAMING, PRI_ERR, "StreamWAVFormatDecoder::run Unsupport bit per MpAudioSample rate!");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:390:17:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                syslog(FAC_STREAMING, PRI_ERR, "StreamWAVFormatDecoder::nextDataChunk (404 Not Found).)");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:392:17:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                syslog(FAC_STREAMING, PRI_ERR, "StreamWAVFormatDecoder::nextDataChunk (RIFF not detected.)");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:403:17:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                syslog(FAC_STREAMING, PRI_ERR, "StreamWAVFormatDecoder::nextDataChunk (Error reading block size!)");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:433:26:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                         syslog(FAC_STREAMING, PRI_ERR, "StreamWAVFormatDecoder::nextDataChunk (File is not 8 or 16 bit, 8khz, mono, signed format!)");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:450:21:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                    syslog(FAC_STREAMING, PRI_ERR, "StreamWAVFormatDecoder::nextDataChunk (Error reading block \"fmt\"!)");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:456:17:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                syslog(FAC_STREAMING, PRI_ERR, "StreamWAVFormatDecoder::nextDataChunk (Error reading block size of fmt chunk)");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:488:17:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                syslog(FAC_STREAMING, PRI_ERR, "StreamWAVFormatDecoder::nextDataChunk (Error reading block size of block)");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgaac/plgaac.c:23:8:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#undef printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgopus/plgopus.c:142:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
    strcpy(codecContext->mFmtp, fmtp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/ByeReport.cpp:251:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchReason, (char *)puchReason);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/ByeReport.cpp:283:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
    strcpy((char *)puchReason, (char *)m_uchReason);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:282:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchName, (char *)puchName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:289:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchEmail, (char *)puchEmail);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:296:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchPhone, (char *)puchPhone);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:303:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchLocation, (char *)puchLocation);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:310:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchAppName, (char *)puchAppName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:317:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchNotes, (char *)puchNotes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:324:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchPrivate, (char *)puchPrivate);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:363:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchName, (char *)m_uchName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:367:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchEmail, (char *)m_uchEmail);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:371:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchPhone, (char *)m_uchPhone);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:375:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchLocation, (char *)m_uchLocation);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:379:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchAppName, (char *)m_uchAppName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:383:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchNotes, (char *)m_uchNotes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:387:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchPrivate, (char *)m_uchPrivate);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:461:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchCName, (char *)puchCName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:495:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchCName, (char *)m_uchCName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:545:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchName, (char *)puchName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:580:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchName, (char *)m_uchName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:635:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchEmail, (char *)puchEmail);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:670:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchEmail, (char *)m_uchEmail);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:722:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchPhone, (char *)puchPhone);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:756:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchPhone, (char *)m_uchPhone);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:808:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchAppName, (char *)puchAppName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:841:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchAppName, (char *)m_uchAppName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:898:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchLocation, (char *)puchLocation);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:932:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchLocation, (char *)m_uchLocation);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:985:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchNotes, (char *)puchNotes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1020:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchNotes, (char *)m_uchNotes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1075:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchPrivate, (char *)puchPrivate);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1109:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)puchPrivate, (char *)m_uchPrivate);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1312:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)uchHostName, (char *)"unknownhost.unknowndomain.com");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1320:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf((char *)m_uchCName, "UnknownUser@%s", uchHostName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1327:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy((char *)m_uchCName, (char *)m_uchName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1331:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf((char *)m_uchCName,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpMMTimerTest.cpp:84:10:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
         printf((i < nDeltas-1) ? "\n" : "\n\n");  // done this way for easy change to comma CSV
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpOutputDriverTest.cpp:321:13:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
            printf(jitterDataStr.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDefs.h:66:11:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#  define snprintf _snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDefs.h:66:20:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#  define snprintf _snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDefs.h:69:11:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#  define vsnprintf _vsnprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDefs.h:72:9:  [4] (shell) popen:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
#define popen _popen
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDefs.h:164:28:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
   __attribute__ ((format (printf, 1, 2)))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSysLog.h:311:32:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
       __attribute__ ((format (printf, 5, 6)))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSysLog.h:330:32:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
       __attribute__ ((format (printf, 3, 4)))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSysLog.h:347:32:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
       __attribute__ ((format (printf, 3, 0)))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSysLog.h:367:32:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
       __attribute__ ((format (printf, 5, 0)))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTask.h:169:21:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
   virtual OsStatus syslog(const OsSysLogFacility facility,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTask.h:175:31:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
       __attribute__ ((format(printf, 4, 5)))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/WinCE/WinCEFixups.h:43:19:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define sprintf_s _snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlDefs.h:48:9:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf _snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlDefs.h:48:18:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf _snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlString.h:399:31:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
       __attribute__ ((format(printf, 2, 3)))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/xmlparser/tinyxml.h:50:19:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define TIXML_LOG printf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:769:9:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
        sprintf(p, DB_LINE_FORMAT, (char *)pEntry->key.data(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:397:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(dateBuffer, "%s, %.2d %s %d %.2d:%.2d:%.2d GMT", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:494:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(dateBuffer, "%s, %d-%s-%d %.2d:%.2d:%.2d %s %s", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:271:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(pLockName, "%s", mFilename.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:762:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(pLockName, "%s", mFilename.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:2239:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(cBuf, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:544:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(pContact->cIpAddress, mStunState.mappedAddress);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:546:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(pContact->cInterface, adapterName.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:619:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(pContact->cIpAddress, mStunState.mappedAddress);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:621:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(pContact->cInterface, adapterName.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:122:19:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                  strcpy(path, d);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:124:19:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                  strcpy(pname, spec);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:137:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(pname, drive);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:152:25:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
                        strcat(path, OsPathBase::separator.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:157:25:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
                        strcat(pname, OsPathBase::separator.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:170:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy (fname, p);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:180:19:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                  strcpy(name, p);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:183:19:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                  strcpy(ext, e);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:189:19:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                  strcpy(name,p);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:89:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(name, un.domainname);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:855:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(adapter_id, interface_id.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:999:10:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
         strcpy(tmp,inet_ntoa(in));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLog.cpp:263:22:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      pOsSysLogTask->syslog(FAC_LOG, PRI_INFO, "logging priority changed to %s (%d)", OsSysLog::sPriorityNames[priority], priority) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLog.cpp:282:25:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
         pOsSysLogTask->syslog(FAC_LOG, PRI_INFO, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLog.cpp:1030:13:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
        n = vsnprintf (p, size, format, args_copy);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:97:4:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
   syslog(FAC_LOG, PRI_NOTICE, "Logger Started") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:397:13:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
            syslog(FAC_LOG, PRI_ERR, "Error reopening logfile %s", mUnboundedLogFile.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:440:16:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
               syslog(FAC_LOG, PRI_ERR, "Error reopening logfile %s", mUnboundedLogFile.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:474:13:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
            syslog(FAC_LOG, PRI_ERR, "unable to write to socket, closing: %s", hostName.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:532:4:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
   syslog(FAC_LOG, PRI_INFO, "console logging enabled: %s", enable ? "true" : "false") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:625:4:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
   syslog(FAC_LOG, PRI_INFO, "Setting file output %s", szFile ? szFile : "<BLANK>");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:630:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_LOG, PRI_INFO, "Closing unbounded logfile %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:649:17:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                syslog(FAC_LOG, PRI_ERR, "Error opening logfile %s", szFile);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:702:4:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
   syslog(FAC_LOG, PRI_INFO, "file flush period set to %d", iSeconds) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:754:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_LOG, PRI_ERR, "output socket missing port %s", host) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:770:13:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
            syslog(FAC_LOG, PRI_ERR, "added output socket (host=%s port=%d)", host, port) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:778:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_LOG, PRI_ERR, "failed to add output socket to %s: reached max sockets (%d)", remoteHost, MAX_SOCKET_TARGETS) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:841:25:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                        syslog(FAC_LOG, PRI_ERR, "Error writing to logfile %s", mBoundedLogFile.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:848:16:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
               syslog(FAC_LOG, PRI_ERR, "Error opening logfile %s", mBoundedLogFile.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTask.cpp:70:22:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
OsStatus OsTaskBase::syslog(const OsSysLogFacility facility,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTask.cpp:183:5:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
    sprintf(nameBuffer, name.data(), taskCount++);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:358:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat(str,tmpYear+2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:371:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat(str,tmpYear+2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:398:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(str, "%d:%02d:%02d%s", hour,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:405:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(str, "%d:%02d%s", hour,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:648:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:661:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:705:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:717:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:805:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:849:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:494:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(cTemp, "Msg t=0x%04X/%s, l=%d, id=%08X/", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:518:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(cTemp, "attr t=0x%04X/%s, l=%d\n  v=", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/TurnMessage.cpp:291:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/TurnMessage.cpp:303:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/TurnMessage.cpp:327:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/TurnMessage.cpp:351:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIp, inet_ntoa(*((in_addr*) &address))) ;        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:553:2:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	printf( pC );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/wince_strftime.cpp:151:9:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	(void) _snprintf(buf, sizeof buf, format, n);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:209:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(domain_name, pNetworkInfo->DomainName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:243:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(ipaddress,adapters[loop].IpAddress);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:290:41:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                                        strcpy(adapters[AdapterCount].AdapterName, pAdapterInfo->Description);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:291:41:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                                        strcpy(adapters[AdapterCount].IpAddress, (const char *)pAdapterInfo->IpAddressList.IpAddress.String);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:300:49:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
                                                strcat(MacAddressStr,MacOneByteStr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:302:41:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                                        strcpy((char *)adapters[AdapterCount].MacAddress, MacAddressStr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:255:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(DNSServers[ipHelperDNSServerCount++], pDns->IpAddress.String);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:285:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(DNSServers[ipHelperDNSServerCount++], pNetworkInfo->CurrentDnsServer->IpAddress.String);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:291:25:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                        strcpy(DNSServers[ipHelperDNSServerCount++],pAddrStr->IpAddress.String);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:456:10:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
         strcpy(DNSServers[i],regDNSServers[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessLinux.cpp:245:21:  [4] (shell) execvp:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
                    execvp(rAppName.data(), (char **) parms);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/host_address.c:54:13:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
            sscanf(line, query, if_name, &address);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/host_address.c:97:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
   strcpy(interface.ifr_name, if_name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/osPrintf.cpp:84:17:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
            n = vsnprintf(p, size, format, tmp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileIteratorTest.cpp:171:17:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
                printf( Trials[trial].expected[i]
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTimerTest.cpp:123:24:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define REPORT_SKEW(x) printf x
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestAsserts.h:102:21:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
                    snprintf(_sipxportunit_message, SIPX_PORT_UNIT_MAX_ERROR_MESSAGE_SIZE - 1, \
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestClass.h:108:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(message, "WARNING: maximum failures of %d excedded for class: %s, failure not added: %s\n", \
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestClass.h:215:21:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
                    snprintf(buffer, SIPX_PORT_UNIT_MAX_ERROR_MESSAGE_SIZE - 1, \
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestConstructor.cpp:90:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(message, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestConstructor.cpp:110:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(message, "ABORT: due to signal %d caught while constructing or initializing test class: %s.  ALL test methods skipped.\n", signalNumber, mpClassName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:165:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(buffer, " while in %s test class: %s between line: %d and next test point\n", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:183:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buffer, "  %d] %s\n", stackIndex + 1, entryPointArray[stackIndex]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:232:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(buffer, "initialization or construction of: %s failed skipping to class: %s\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:310:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:341:18:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                 sprintf(buffer, "\n%s %d failure(s):\n", classConstr->getClassName(), classConstr->getFailureCount());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:354:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(buffer, "WARNING: maximum failures (%d) reached for test class: %s\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:458:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(stringCopy, stringToCopy);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashBag.cpp:732:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(tmpString, "%s%d", stringPrefix, i);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashBag.cpp:743:16:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
               sprintf( tmpString, "%s%d", stringPrefix, j );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashMap.cpp:908:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(tmpString, "%s%d", stringPrefix, i);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashMap.cpp:919:16:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
               sprintf( tmpString, "%s%d", stringPrefix, j );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp:392:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf(description, "\"%s\"(%d, %d)", testData[i].string,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp:733:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg, "(UtlString)\"%s\" == (char *)\"%s\"", data[i].rhs, data[i].lhs);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp:737:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg, "(UtlString)\"%s\" != (char *)\"%s\"", data[i].rhs, data[i].lhs);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp:742:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg, "(char *)\"%s\" == (UtlString)\"%s\"", data[i].rhs, data[i].lhs);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp:746:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg, "(char *)\"%s\" != (UtlString)\"%s\"", data[i].rhs, data[i].lhs);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlTokenizerTest.cpp:110:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf(msg, "For %s, verify token number %d", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlTokenizerTest.cpp:116:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf (msg, "For %s, verify return value for token number %d", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlTokenizerTest.cpp:123:21:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                    sprintf (msg, "For %s, verify return value after all tokens", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlTokenizerTest.cpp:129:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg, "For %s, verify number of tokens", testSet[i].testDescription);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKeySym.cpp:27:12:  [4] (crypto) EVP_des_cbc:
  DES only supports a 56-bit keysize, which is too small given today's
  computers (CWE-327). Use a different patent-free encryption algorithm with
  a larger keysize, such as 3DES or AES.
: mpCipher(EVP_des_cbc())
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlHistogram.cpp:157:15:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
      width = sprintf(&buffer[j], mOutputFormat, mpBins[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:110:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buf, "0x%08x 0x%08x %6d %12d %s %s %6d %6d %6d", taskId, addr, size, ts, taskName(taskId), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:115:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buf, "0x%08x 0x%08x %6d %12d %s %6d %6d %6d", taskId, addr, size, ts, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:142:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buf, "0x%08x 0x%08x %12d %s %s", taskId, addr, ts, taskName(taskId), name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:146:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buf, "0x%08x 0x%08x %12d %s", taskId, addr, ts, name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:173:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buf, "0x%08x 0x%08x %6d %12d %s %6d", taskId, addr, options, ts, taskName(taskId), state);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:205:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buf, "0x%08x 0x%08x %6d %12d %s %6d %6d", taskId, addr, state, ts, taskName(taskId), timerId, type);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:235:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buf, "0x%08x 0x%08x %6d %12d %s", taskId, addr, size, ts, taskName(taskId));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:264:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(buf, "0x%08x 0x%08x %12d %s", taskId, addr, ts, taskName(taskId));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:274:11:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
      n = vsnprintf (&mpData[mSize], availableCap, format, tmp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/XmlContent.cpp:274:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
   sprintf(buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:135:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy( buffer, str.c_str() );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1007:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
      strcpy(newfilename,filename);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1008:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat(newfilename,newsuffix);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:341:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "Bandwidth: type=%s, bandwidth=%d\n", SdpBandwidthTypeString[sdpBandwidth->getType()], sdpBandwidth->getBandwidth());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:393:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "Group: semantics=%s", SdpGroupSemanticsString[sdpGroup->getSemantics()]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:408:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
   sprintf(stringBuffer,"Sdp:\n"
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCandidate.cpp:192:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
   sprintf(stringBuffer, "SdpCandidate: foundation=\'%s\', id=%d, transport=%s, priority=%" FORMAT_INTLL "d, addr=\'%s\', port=%d, type=%s\n"
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCandidatePair.cpp:192:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
   sprintf(stringBuffer, "SdpCandidatePair:\n"
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCodec.cpp:911:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(stringBuffer,"SdpCodec: codecId=%d, payloadId=%d, mime=\'%s/%s\', rate=%d, pktLen=%d, numCh=%d, fmtData=\'%s\'\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:352:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "Connection: netType=%s, addrType=%s, addr=%s, port=%d, ttl=%d\n", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:369:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "RTCP Connection: netType=%s, addrType=%s, addr=%s, port=%d, ttl=%d\n", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:385:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "Bandwidth: type=%s, bandwidth=%d\n", Sdp::SdpBandwidthTypeString[sdpBandwidth->getType()], sdpBandwidth->getBandwidth());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:396:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "Crypto: tag=%d, suite=%s", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:406:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(stringBuffer, "\n        Key Param: method=%s, key=%s, srtpLifetime=%d, srtpMkiValue=%d, srtpMkiLength=%d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:415:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "\n        kdr=%d, encryptSrtp=%d, encryptSrtcp=%d, authSrtp=%d, fecOrder=%s, wsh=%d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:426:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(stringBuffer, "\n        fecKeyMethod=%s, fecKey=%s, fecLifetime=%d, fecMkiValue=%d, fecMkiLength=%d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:452:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "PreConditionCurrentStatus: type=%s, status=%s, direction=%s\n", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:466:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "PreConditionConfirmStatus: type=%s, status=%s, direction=%s\n", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:480:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "PreConditionDesiredStatus: type=%s, strength=%s, status=%s, direction=%s\n", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:507:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(stringBuffer, "Remote Candidate: componentId=%d, addr=%s, port=%d\n", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:527:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
   sprintf(stringBuffer, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/dialogwatch/dialogwatch.cpp:64:7:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
      fprintf(stdout, OUTPUT_PREFIX);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/dialogwatch/dialogwatch.cpp:72:7:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
      fprintf(stdout, OUTPUT_SUFFIX);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:183:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szSrtpKey, ref.szSrtpKey);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/crypt.h:11:7:  [4] (crypto) crypt:
  The crypt functions use a poor one-way hashing algorithm; since they only
  accept passwords of 8 characters or fewer and only a two-byte salt, they
  are excessively vulnerable to dictionary attacks given today's faster
  computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
  with a larger, non-repeating salt.
char *crypt(register const char *pw, register const char *salt);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:131:9:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#ifndef snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:132:9:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf _snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:132:18:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf _snprintf
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:151:9:  [4] (shell) popen:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
#ifndef popen
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:152:9:  [4] (shell) popen:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
#define popen _popen
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/utilNT.h:24:6:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
void syslog(int priority, const char *message, ... /* arguments */);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/CommandProcessor.cpp:213:33:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                                strcpy((*argv)[argIndex], arg.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipSendCommand.cpp:129:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(callIdBuffer, "%d-%s", transactionIndex + 1,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpConnectionMap.cpp:190:5:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
    sprintf(nameBuffer, name.data(), count++);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:990:17:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
                strcat(sizeBuffer,tmpDateBuf);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:279:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(buf, "Date: %s",dateString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NameValuePair.cpp:118:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(valueString, newValue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:697:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy((char*)params.masterKey, srtpKey);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2896:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
   sprintf(buffer, "%d %s/%d", payloadType, mimeSubtype,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipContactDb.cpp:128:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(pContact->cIpAddress, contact.cIpAddress) ;            
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipContactDb.cpp:148:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(pContact->cIpAddress, contact.cIpAddress) ;            
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipContactDb.cpp:676:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(cFoo, "   %d %d %d %s/%s:%d %s %s\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:156:17:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                syslog(FAC_LINE_MGR, PRI_ERR, "failed to register line (cseq=%d, no response): %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:176:21:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                    syslog(FAC_LINE_MGR, PRI_DEBUG, "registered line (cseq=%d): %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:212:21:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                    syslog(FAC_LINE_MGR, PRI_ERR, "failed to register line (cseq=%d, auth): %s\nnonce=%s, opaque=%s,\nrealm=%s,scheme=%s,\nalgorithm=%s, qop=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:245:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_LINE_MGR, PRI_INFO, "SipLineMgr::addLine added line: %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:262:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_LINE_MGR, PRI_ERR, "SipLineMgr::deleteLine unable to delete line (not found): %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:285:5:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
    syslog(FAC_LINE_MGR, PRI_INFO, "SipLineMgr::deleteLine deleted line: %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:302:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_LINE_MGR, PRI_ERR, "unable to delete line (not found): %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:317:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_LINE_MGR, PRI_ERR, "unable to enable line (not found): %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:342:5:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
    syslog(FAC_LINE_MGR, PRI_INFO, "enabled line: %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:357:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_LINE_MGR, PRI_ERR, "SipLineMgr::disableLine unable to disable line (not found): %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:371:5:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
    syslog(FAC_LINE_MGR, PRI_INFO, "SipLineMgr::disableLine disabled line: %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:418:4:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
   syslog(FAC_LINE_MGR, PRI_INFO, "default line changed: %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:1239:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(integerString,"Message-Account: %s\r\n",msgAccountUri);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2509:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf((char*)warningContent.data(), "%3d %s %s", code, hostname, text);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:4474:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(diversionString,"%s;reason=%s",addr,reasonParam);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp:519:20:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                   syslog(FAC_SIP, PRI_WARNING,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp:643:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_UPGRADE, PRI_NOTICE,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp:654:7:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
      syslog(FAC_UPGRADE, PRI_NOTICE,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:300:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_REFRESH_MGR, PRI_DEBUG, "adding registration:\nurl=%s\nlineid=%s\nperiod=%d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:328:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_REFRESH_MGR, PRI_ERR, "unable to add new registration (dup):\nurl=%s\nlineid=%s\nperiod=%d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:642:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_REFRESH_MGR, PRI_ERR, "unable to send %s message (send failed):\nto: %s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:731:5:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
    syslog(FAC_REFRESH_MGR, PRI_DEBUG, "rescheduling %s request:\nsecs=%d\npercent=%d\nsendNow=%d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:866:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_REFRESH_MGR, PRI_DEBUG, "rescheduled %s in %d second(s)",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1346:9:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
        syslog(FAC_REFRESH_MGR, PRI_DEBUG, "queueing register until the SIP UA is ready:\nfrom=%s\nto=%s\nuri=%s\ncontact=%s\ncallid=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1390:13:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
            syslog(FAC_REFRESH_MGR, PRI_ERR, "unable to send %s (transport):\ncallid=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1446:21:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                    syslog(FAC_REFRESH_MGR, PRI_INFO, "authentication requested for %s request:\ncallid=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1539:13:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
            syslog(FAC_REFRESH_MGR, PRI_DEBUG, "timeout for %s:\ncallid=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1586:25:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                        syslog(FAC_REFRESH_MGR, PRI_ERR, "unable to refresh %s (not found):\ncallid=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1611:25:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                        syslog(FAC_REFRESH_MGR, PRI_ERR, "unable to refresh %s (not found):\ncallid=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1794:13:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
            syslog(FAC_REFRESH_MGR, PRI_DEBUG, "adding registration:\nurl=%s\nevent-type=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1846:17:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
                syslog(FAC_REFRESH_MGR, PRI_ERR, "unable to add registration (queue):\nurl=%s\nevent-type=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1854:13:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
            syslog(FAC_REFRESH_MGR, PRI_ERR, "unable to add new registration (dup):\nurl=%s\nevent-type=%s",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSrvLookup.cpp:603:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
   sprintf(lookup_name, "_%s._%s.%s", service, proto_string, domain);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscriptionMgr.cpp:478:9:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
        sprintf(buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTcpServer.cpp:144:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(contact.cIpAddress, szBindAddr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTcpServer.cpp:150:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(contact.cInterface, adapterName.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTlsServer.cpp:184:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(contact.cIpAddress, szBindAddr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTlsServer.cpp:192:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(contact.cInterface, szAdapterName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:290:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(contact.cIpAddress, szBoundIp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:297:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(contact.cInterface, adapterName.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:384:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szIpToStun, szLocalIp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:394:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(szIpToStun, pKey->data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:427:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(szIpToStun, pKey->data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:861:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szLocalIpForPortLookup, mDefaultIp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:865:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(szLocalIpForPortLookup, szLocalIp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:322:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(contact.cIpAddress, publicAddress);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:326:13:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
            strcpy(contact.cInterface, adapterName.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgentStateless.cpp:152:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(messageChars, "Sent message %s port:%d:\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgentStateless.cpp:155:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(messageChars, "Failed to send message %s port:%d:\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcBody.cpp:106:7:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
      sprintf(temp, "%0#16"PRIx64, pValue->getValue());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:47:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(newq->qname, oldq->qname);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:80:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(newr->name, oldr->name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:115:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->string, ord->string);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:128:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->soa.mname, ord->soa.mname);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:129:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->soa.rname, ord->soa.rname);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:145:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->string, ord->string);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:177:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->string, ord->string);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:190:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->hinfo.cpu, ord->hinfo.cpu);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:191:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->hinfo.os, ord->hinfo.os);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:204:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->minfo.rmailbx, ord->minfo.rmailbx);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:205:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->minfo.emailbx, ord->minfo.emailbx);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:214:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->mx.exchange, ord->mx.exchange);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:225:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->srv.target, ord->srv.target);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:235:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->naptr.services, ord->naptr.services);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:240:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->naptr.regexp, ord->naptr.regexp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:245:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->naptr.regexp, ord->naptr.regexp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:250:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->naptr.replacement, ord->naptr.replacement);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:260:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy( nrd->txt.text, ord->txt.text );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:281:33:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                                strcpy( ntxtp->text, otxtp->text );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:297:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->afsdb.hostname, ord->afsdb.hostname);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:311:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->rp.mbox_dname, ord->rp.mbox_dname);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:312:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->rp.txt_dname, ord->rp.txt_dname);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:320:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->string, ord->string);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:333:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->isdn.address, ord->isdn.address);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:334:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->isdn.sa, ord->isdn.sa);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:344:17:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
                strcpy(nrd->rt.int_host, ord->rt.int_host);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:405:23:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                (void)sprintf(p, "%d day%s", PLURALIZE(days));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:411:23:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                (void)sprintf(p, "%d hour%s", PLURALIZE(hours));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:417:23:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                (void)sprintf(p, "%d min%s", PLURALIZE(mins));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:423:23:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                (void)sprintf(p, "%d sec%s", PLURALIZE(secs));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:509:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy(_sip_res.defdname, cp + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:90:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(ptr, name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:398:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf(nbuf, "%s.%s", name, domain);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_send.c:179:42:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#   define Dprint(cond, args) if (cond) {fprintf args;} else {}
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_send.c:181:9:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
        fprintf args;\
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpBodyTest.cpp:86:10:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
         strcpy(boundary_string, body.getMultipartBoundary());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpBodyTest.cpp:93:10:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
         sprintf(part2, HEADER PART1 FORMAT2 TRAILER, boundary_string);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:180:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:202:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:237:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:267:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:284:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(msg,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipDialogMonitorTest.cpp:84:10:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
         system("pwd >/tmp/p");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:316:13:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
            sprintf(message, message_template, tests[i].string);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:661:13:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
            sprintf(message, message_template, tests[i].string);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:764:13:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
            sprintf(message, message_template, tests[i].string);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:838:13:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
            sprintf(message, tests[i].message_template, tests[i].address);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:972:13:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
            sscanf(warning_header, " %d %s \"%[^\"]\"", &code, agent, text);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:985:10:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
         strcpy(agent_expected, address.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1151:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(to_URI, "To: <sip:to@example.com?%s=value1>", header_name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1177:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(to_URI, "To: <sip:to@example.com?%s=value2>", header_name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1231:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(to_URI, "To: <sip:to@example.com?%s=value1>", header_name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1257:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(to_URI, "To: <sip:to@example.com?%s=value2>", header_name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1316:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(to_URI, "To: <sip:to@example.com?%s=value1>", header_name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:79:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(buffer, "This is default content for the resource '%s'.",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:94:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf(config_file, "%s/%d.conf", temp_dir, pid);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:126:10:  [4] (shell) execl:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
         execl(EXECL_ARGS, NULL);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:635:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf(result_string + strlen(result_string),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:744:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(result_string + strlen(result_string),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:773:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(result_string + strlen(result_string),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:152:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "simple file url : %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:178:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "file url w/path and port : %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:194:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "simple http url : %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:208:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(msg, "url w/path and port : %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:226:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(msg, "url w/path and port : %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:250:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(msg, "http url with query (name-addr) : %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:256:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(msg, "http url with query (name-addr) : %s", szUrl2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:268:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(msg, "http url with query (addr-spec) : %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:274:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
         sprintf(msg, "http url with query (addr-spec) : %s", szUrl2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:284:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "simple rtsp url : %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:298:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "simple rtsp url : %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:311:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "sip url with ip address: %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:326:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "sip url with port: %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:341:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "url sip address: %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:360:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "advanced bracketed sip address: %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:379:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "complex user sip address: %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:401:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "long hostname sip address: %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:579:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "has space and wrong capitalization in Sip: %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:592:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "with angle brackets %s", withAngles);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:600:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "without angle brackets %s", withoutAngles);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:616:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "needed angle brackets %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1017:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test false when invalid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1020:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test true when valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1025:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1030:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid header param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1035:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "header params  %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1040:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid field param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1045:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "field params  %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1062:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test true when valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1067:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1072:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid header param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1077:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "header params  %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1082:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid field param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1087:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "field params  %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1102:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test true when valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1107:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1112:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid header param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1118:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid field param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1135:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test true when valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1141:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid header param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1146:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1151:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid field param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1167:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test true when valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1173:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid header param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1179:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "valid field param count %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1184:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "Test valid arguments %s", szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1392:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "test=%s, url=%s", szTest, szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1403:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "test=%s, url=%s", szTest, szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1414:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "test=%s, url=%s", szTest, szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1426:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(msg, "test=%s, url=%s", szTest, szUrl);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1462:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(msg, "%s != %s", strings[i], strings[j]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1500:17:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                sprintf(msg, "%s == %s", strings[i], strings[j]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:455:10:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
         strcat(t, argv[i] + 9);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:467:10:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
         strcat(t, argv[i] + 8);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:2373:12:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
    hMod = LoadLibrary("plc4.dll");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:2374:22:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
    if (hMod) hMod = LoadLibrary("nspr4.dll");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:2375:22:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
    if (hMod) hMod = LoadLibrary("nss3.dll");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:2376:22:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
    if (hMod) hMod = LoadLibrary("smime3.dll");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:2377:22:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
    if (hMod) hMod = LoadLibrary("ssl3.dll");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/BaseClass.h:96:6:  [3] (misc) InitializeCriticalSection:
  Exceptions can be thrown in low-memory situations. Use
  InitializeCriticalSectionAndSpinCount instead.
void InitializeCriticalSection(CRITICAL_SECTION *csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/BaseClass.h:97:6:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
void EnterCriticalSection(CRITICAL_SECTION *csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h:617:5:  [3] (misc) InitializeCriticalSection:
  Exceptions can be thrown in low-memory situations. Use
  InitializeCriticalSectionAndSpinCount instead.
    InitializeCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h:649:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h:718:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h:770:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h:963:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h:1012:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h:1064:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h:1118:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/TLinkedList.h:1174:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/NetInTask.cpp:867:13:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
            srand((unsigned)time(NULL));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/BaseClass.cpp:171:6:  [3] (misc) InitializeCriticalSection:
  Exceptions can be thrown in low-memory situations. Use
  InitializeCriticalSectionAndSpinCount instead.
void InitializeCriticalSection(CRITICAL_SECTION *csSynchronized)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/BaseClass.cpp:177:6:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
void EnterCriticalSection(CRITICAL_SECTION *csSynchronized)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/BaseClass.cpp:222:6:  [3] (misc) InitializeCriticalSection:
  Exceptions can be thrown in low-memory situations. Use
  InitializeCriticalSectionAndSpinCount instead.
void InitializeCriticalSection(CRITICAL_SECTION *csSynchronized)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/BaseClass.cpp:248:6:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
void EnterCriticalSection(CRITICAL_SECTION *csSynchronized)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/NetworkChannel.cpp:59:5:  [3] (misc) InitializeCriticalSection:
  Exceptions can be thrown in low-memory situations. Use
  InitializeCriticalSectionAndSpinCount instead.
    InitializeCriticalSection(&m_csChannelSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/NetworkChannel.cpp:551:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection(&m_csChannelSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/ReceiverReport.cpp:103:5:  [3] (misc) InitializeCriticalSection:
  Exceptions can be thrown in low-memory situations. Use
  InitializeCriticalSectionAndSpinCount instead.
    InitializeCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/ReceiverReport.cpp:166:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/ReceiverReport.cpp:436:5:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
    EnterCriticalSection (&m_csSynchronized);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpCodecsPerformanceTest.cpp:167:7:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
      srand(time(NULL));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/WinCE/WinCEFixups.h:65:8:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
#undef CreateProcess
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsDateTimeWnt.cpp:45:7:  [3] (misc) InitializeCriticalSection:
  Exceptions can be thrown in low-memory situations. Use
  InitializeCriticalSectionAndSpinCount instead.
      InitializeCriticalSection(&CriticalSection);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsDateTimeWnt.cpp:55:7:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
      EnterCriticalSection(&CriticalSection);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsProcessWnt.cpp:294:23:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
        int retcode = CreateProcess(
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsProcessWnt.cpp:294:23:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
        int retcode = CreateProcess(
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsProcessWnt.cpp:313:23:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
        int retcode = CreateProcess(
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsProcessWnt.cpp:313:23:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
        int retcode = CreateProcess(
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsSharedLibMgrWnt.cpp:88:25:  [3] (misc) LoadLibraryEx:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
            libHandle = LoadLibraryEx(libName, NULL, LOAD_WITH_ALTERED_SEARCH_PATH);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsSharedLibMgrWnt.cpp:97:25:  [3] (misc) LoadLibraryEx:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
            libHandle = LoadLibraryEx(libName, NULL, 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsTaskWnt.cpp:594:4:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
   srand(randSeed);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:100:27:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
                hModule = LoadLibrary("iphlpapi.dll");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:109:35:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
                        hModule = LoadLibrary(FullDLLPath);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:118:27:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
        hIpHelperModule = LoadLibrary("iphlpapi.dll");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:127:22:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
			hIpHelperModule = LoadLibrary(caFullDLLPath);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsEventTest.cpp:143:9:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
        srand(OsDateTime::getSecsSinceEpoch());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRandom.cpp:48:5:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
    srand(seed) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRandom.cpp:54:5:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
    srand(seed) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/examples/xmlrpc/xmlrpcClient.cpp:84:24:  [3] (buffer) getopt_long:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
   while ((optResult = getopt_long (argc, argv, short_options, long_options, NULL)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/utilNT.h:5:8:  [3] (random) drand48:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
double drand48();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/utilNT.h:6:5:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
int getopt(int nargc, char * const *nargv, const char *ostr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:337:43:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
        if (/*issetugid() == 0 && */(cp = getenv("LOCALDOMAIN")) != NULL) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:546:13:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
		if ((cp = getenv("RES_OPTIONS")) != NULL)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:418:9:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
	file = getenv("HOSTALIASES");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:85:30:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
      const char* temp_dir = getenv("TMPDIR");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:598:10:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
         srand(1);              // 1 is the default seed.
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsMsg.h:188:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char         mStringParam1[PSMSG_MAX_STRINGPARAM_LENGTH + 1];      // String parameter 1
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ps/PsMsg.h:189:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char         mStringParam2[PSMSG_MAX_STRINGPARAM_LENGTH + 1];      // String parameter 2
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtComponent.h:107:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char    mpName[21];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtConnectionEvent.h:81:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char mAddressName[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtPhoneButton.h:95:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char    mpInfo[MAX_NAME_LENGTH + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminal.h:462:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char mTerminalName[PTTERMINAL_MAX_NAME_LENGTH + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalConnectionEvent.h:91:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char mAddress[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/ptapi/PtTerminalConnectionEvent.h:92:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char mTerminalName[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:421:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szSrtpKey, szKey, safeLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:431:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szSmimeKeyDer, szKey, safeLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:468:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szSrtpKey[MAX_SRTP_KEY_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:470:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szSmimeKeyDer[MAX_SMIME_KEY_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:473:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char dbLocation[256];                         
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:475:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szMyCertNickname[32];   
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:477:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szCertDbPassword[MAX_PASSWORD_LENGTH];   
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:483:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szSrtpKey, ref.szSrtpKey, ref.nSrtpKeyLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:484:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szSmimeKeyDer, ref.szSmimeKeyDer, ref.nSmimeKeyLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:673:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                cInterface[32] ; /**< Source interface       */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:674:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                cIpAddress[28] ; /**< IP Address             */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:677:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                cCustomTransportName[32]; /**< Custom transport name */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:678:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                cCustomRouteID[64] ; /**< Custom transport routing tag */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:694:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char              cName[SIPXTAPI_CODEC_NAMELEN];  /**< Codec name    */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:724:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char              cName[SIPXTAPI_CODEC_NAMELEN];  /**< Codec name    */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:70:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char device[MAX_VIDEO_DEVICE_LENGTH]; /**< Desired auto device */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:77:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char device[MAX_VIDEO_DEVICE_LENGTH];       /**< Desired auto device */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:164:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char            dbLocation[256];    /**< Cache cert db location > */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:165:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char            myCertNickname[32]; /**< Cache certificate nickname > */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:166:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char            dbPassword[32];    /**< Cache cert db password > */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:170:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char             szAcceptLanguage[16]; /**< accept language to use in sip messages>*/
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:171:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char             szLocationHeader[256]; /**< location header */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:353:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                      szTransport[MAX_TRANSPORT_NAME];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:354:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                      szLocalIp[32];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:359:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                      cRoutingId[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CSeqManager.cpp:125:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cTemp[512] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CallManager.cpp:69:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char CONVERT_TO_STR[17] = {'0', '1', '2', '3', '4', '5', '6', '7', '8', '9',
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CallManager.cpp:314:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char eventDescription[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CallManager.cpp:1159:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pTransportDataCopy, pTransportData, sizeof(SIPX_TRANSPORT_DATA));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpCall.cpp:1007:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char eventDescription[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpCall.cpp:1013:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(eventDescription, " (%d) \n\t", msgSubType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpCallManager.cpp:450:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buffer[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpMultiStringMessage.cpp:214:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char intDataString[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:2791:16:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
               memcpy(videoCodec.cName, sps.data(), sps.length());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:2812:16:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
               memcpy(videoCodec.cName, pps.data(), pps.length());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/DialogEventPublisher.cpp:64:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char dialogId[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/DialogEventPublisher.cpp:91:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
      UtlBoolean localConnection = atoi(arg[TAO_OFFER_PARAM_LOCAL_CONNECTION]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/DialogEventPublisher.cpp:140:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(dialogId, "%ld", mDialogId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/DialogEventPublisher.cpp:249:19:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                  sprintf(dialogId, "%ld", mDialogId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/PresenceDialInServer.cpp:143:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
      UtlBoolean localConnection = atoi(arg[TAO_OFFER_PARAM_LOCAL_CONNECTION]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipConnection.cpp:107:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char fromTagBuffer[60];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipConnection.cpp:108:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(fromTagBuffer, "%dc%d", call->getCallIndex(), fromTagInt);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipConnection.cpp:2159:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char buff[50];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipConnection.cpp:2160:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(buff,"%d", num);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipConnection.cpp:6118:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buffer[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:810:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:811:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(buf, "%d", param1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:855:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:856:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(buf, "%d", gain);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:916:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:917:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(buf, "%d", volume);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:992:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:993:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", type);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1006:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1010:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponent::DISPLAY);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1012:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponent::GRAPHIC_DISPLAY);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1014:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponent::HOOKSWITCH);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1016:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponent::LAMP);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1018:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponent::MICROPHONE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1020:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponent::RINGER);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1022:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponent::SPEAKER);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1024:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponent::BUTTON);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1030:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buf, "%d", (int)PsTaoComponent::EXTERNAL_SPEAKER);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1068:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1070:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", cnt);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1084:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1088:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponentGroup::HEAD_SET);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1090:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponentGroup::HAND_SET);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1092:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponentGroup::SPEAKER_PHONE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1094:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", (int)PsTaoComponentGroup::PHONE_SET);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1101:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buf, "%d", (int)PsTaoComponentGroup::EXTERNAL_SPEAKER);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1110:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", cnt);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1122:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int type = atoi(pMsg->getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsPhoneTask.cpp:1218:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int type = atoi(pMsg->getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:168:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:169:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", handle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:212:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:213:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", handle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:302:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:304:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:313:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", forwards[i].mForwardingType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:316:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", forwards[i].mFilterType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:322:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", forwards[i].mNoAnswerTimeout);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:399:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:401:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", listener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:443:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:445:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", listener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:486:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:488:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", flag);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:530:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:532:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:541:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", forwards[i].mForwardingType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:544:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", forwards[i].mFilterType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:550:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", forwards[i].mNoAnswerTimeout);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:627:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:629:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", flag);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:671:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:673:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", milliSecs);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:739:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:741:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:785:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:787:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:831:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:833:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:919:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:921:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:209:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:211:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)pSessionDesc);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:253:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        return (PtStatus) atoi(retCode);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:259:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:313:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:315:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)&rTerminal);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:318:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)&rAddress);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:323:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)pSessionDesc);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:366:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        return (PtStatus) atoi(retCode);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:429:24:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rc = (PtStatus)atoi(params[2]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:496:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:502:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", limit) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:507:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", bAutoRenegotiate) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:594:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:596:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:677:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int cnt = atoi(addresses[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:731:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int cnt = atoi(addresses[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:852:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:854:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1113:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rCount = atoi(argList[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1122:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1123:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", (int)&rCallListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1176:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1178:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)pController);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1222:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1224:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)pController);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1274:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1276:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)pSessionDesc);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1283:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", transferType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1328:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                ret = (PtStatus) atoi(argList[2]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1349:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char callId[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1403:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1405:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", bBridgeParticipants) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1449:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1451:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", bRemoteParticipants) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1537:35:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mState = rState = atoi(arg.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1607:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
      cost = atoi(argResponse.data()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1661:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
      cost = atoi(argResponse.data()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:36:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(mpName, "unknown");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:49:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "button");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:52:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "display");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:55:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "graphic_display");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:58:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "hookswitch");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:61:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "lamp");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:64:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "microphone");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:67:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "ringer");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:70:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "speaker");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:73:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "external_speaker");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:76:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "text_display");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:80:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "unknown");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:126:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "unknown");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:144:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "unknown");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:174:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(mpName, "unknown");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponentGroup.cpp:317:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponentGroup.cpp:319:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponentGroup.cpp:369:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponentGroup.cpp:371:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:281:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                int isLocal = atoi(argList[j + 3]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:384:66:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                                                                 atoi(argList[3]),      // next CSeq
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:385:66:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                                                                 atoi(argList[4]),      // lastFromCseq
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:386:66:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                                                                 atoi(argList[5]),      // lastToCseq
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:387:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                         atoi(argList[6]));     // sessionState
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:444:35:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mState = rState = atoi(arg.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:501:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                ret = (PtStatus) atoi(argList[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:559:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                ret = (PtStatus) atoi(argList[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:614:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                count = atoi(argList[2]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:717:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rc = atoi(retCode.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp:95:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp:96:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", level);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp:101:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp:143:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp:144:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp:177:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rLevel = atoi(arg[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp:178:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rLow = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp:179:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rHigh = atoi(arg[2]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneDisplay.cpp:180:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rNominal = atoi(arg[3]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp:107:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp:108:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", volume);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp:113:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp:154:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp:155:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp:190:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rVolume = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp:197:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp:198:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneExtSpeaker.cpp:233:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rVolume = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneHookswitch.cpp:115:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char arg[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneHookswitch.cpp:117:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(arg, "%d", state);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneLamp.cpp:123:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char buf[DEF_TAO_MAX_BUFFER_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneLamp.cpp:130:25:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                        sprintf(buf, "%d", mode);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneMicrophone.cpp:101:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneMicrophone.cpp:102:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneMicrophone.cpp:106:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", gain);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneMicrophone.cpp:146:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneMicrophone.cpp:149:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneMicrophone.cpp:182:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rGain = atoi(value[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:102:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:103:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", patternIndex);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:146:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:147:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", patternIndex);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:190:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:191:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", volume);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:261:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rMaxIndex = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:299:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rNumRingCycles = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:306:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:307:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", patternIndex);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:382:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rPatternIndex = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:422:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rVolume = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneRinger.cpp:462:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rIsOn = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp:107:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp:108:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", volume);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp:113:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp:154:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp:155:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp:190:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rVolume = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp:197:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp:198:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", mGroupType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneSpeaker.cpp:233:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rVolume = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:115:24:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                port = atoi(svr((pos + 1), (svr.length() - pos - 1)).data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:358:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:360:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)&rListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:501:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:503:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:559:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:561:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:609:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:611:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:750:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:752:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:975:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtProvider.cpp:977:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)&rListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:219:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:227:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", handle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:283:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:285:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:343:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:345:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:428:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int nItems = atoi(list[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:431:28:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                int type = atoi(list[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:502:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:504:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:542:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        nItems = atoi(types[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:550:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                        int type = atoi(types[i + 1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:748:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:750:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:802:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                        int type = atoi(types[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1054:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                int isLocal = atoi(argList[2 * i + 3]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1076:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1078:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1203:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                count = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1254:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                count = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1305:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                count = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1355:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                count = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1405:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                count = atoi(arg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1471:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1473:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)&rCallListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1523:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1530:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", handle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1580:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1582:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", flag);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1630:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1632:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", limit);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:396:35:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mState = rState = atoi(arg.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:482:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:484:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", toneId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:487:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)local);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:490:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)remote);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:585:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:589:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)repeat);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:592:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)local);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:595:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)remote);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:642:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:644:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", (int)audioFilePtr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:647:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)repeat);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:650:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)local);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:653:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (int)remote);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:741:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:748:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", (int) pPlayer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:753:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", flags);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:797:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:804:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", (int) pPlayer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:848:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:854:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", (int) pPlayer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:897:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnection.cpp:903:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", (int) pPlayer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:324:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int     size   = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:333:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:337:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", (int)pAddressListeners[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:372:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int     size   = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:381:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:385:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", (int)pCallListeners[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:420:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int     size   = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:429:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:433:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", (int)pConnections[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:594:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int     size   = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:603:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:607:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", (int)pTerminals[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:863:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int flag = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:902:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int flag = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:933:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int milisec = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:342:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:343:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", ret);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:408:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        pTerminal = (PtTerminal *) atoi(args[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:409:35:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        pAddress =  (PtAddress *) atoi(args[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:411:38:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        pSession = (PtSessionDesc *) atoi(args[3]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:416:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:417:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", ret);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:500:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:501:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", ret);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:575:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
   int       iLevel = atoi(args[1]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:576:30:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
   UtlBoolean bRenegotiate = atoi(args[2]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:646:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:647:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", iCodecCPUCodec);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:683:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:684:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", iCodecCPULimit);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:750:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:751:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", argCnt);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:805:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:806:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", argCnt);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:938:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int     numConnections   = atoi(arg[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:1040:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:1042:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", state);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:1142:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:1144:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", numConnections);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:1265:28:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int transferType = atoi(arg[3]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:1276:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:1277:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", ret);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:1326:42:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        UtlBoolean bBridgeParticipants = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoCallAdaptor.cpp:1354:37:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
   UtlBoolean bRemoteParticipants = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoClientTask.cpp:322:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&pBuf[0], &cookie, sizeof(unsigned long)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoClientTask.cpp:323:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&pBuf[sizeof(unsigned long)], &length, sizeof(unsigned long)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoClientTask.cpp:324:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&pBuf[sizeof(unsigned long)*2], buffer.data(), bufferLen) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:329:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:330:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", ret);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:360:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:361:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", ret);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:390:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:404:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", cseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:408:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", cseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:412:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", cseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:416:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", cseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:455:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:457:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", state);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:521:25:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                        char buff[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:522:25:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                        sprintf(buff, "%d", isLocal);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:556:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:558:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", numConnections);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:614:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoConnectionAdaptor.cpp:615:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", ret);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:39:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char name[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:42:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char name[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:183:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:185:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d ", eventId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:197:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char buf[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:314:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d ", eventId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:333:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:335:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d ", rMsg.getTaoObjHandle(), (int)pListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:471:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:473:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d ", rMsg.getTaoObjHandle(), (int)pListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:597:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:599:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d ", rMsg.getTaoObjHandle(), (int)pListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:635:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:637:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d ", rMsg.getTaoObjHandle(), (int)pListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:660:35:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                event.setIntData1(atoi(argList[0]));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:661:35:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                event.setIntData2(atoi(argList[1]));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:759:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:761:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d ", rMsg.getTaoObjHandle(), (int)pListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:946:38:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int metaCode = (cnt >= 10) ? atoi(argList[10]) : PtEvent::META_EVENT_NONE;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:956:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int sipResponseCode = atoi(argList[7]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1002:63:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        PtEvent::PtEventCause cause = (PtEvent::PtEventCause) atoi(argList[4]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1003:38:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int metaCode = (cnt >= 10) ? atoi(argList[10]) : 0;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1013:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int isLocal = atoi(argList[6]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1020:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int sipResponseCode = atoi(argList[7]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1038:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                remoteIsCallee = atoi(argList[3]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1074:63:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        PtEvent::PtEventCause cause = (PtEvent::PtEventCause) atoi(argList[4]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1075:38:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int metaCode = (cnt >= 10) ? atoi(argList[10]) : 0;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1085:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int isLocal = atoi(argList[6]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1092:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int sipResponseCode = atoi(argList[7]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1111:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                remoteIsCallee = atoi(argList[3]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerManager.cpp:180:33:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                char buf[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerManager.cpp:227:57:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                                        char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerManager.cpp:229:57:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                                                        sprintf(buf, "%d", msgSubType); // actual event id
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerManager.cpp:298:61:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                                            char buf[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerManager.cpp:300:61:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                                                            sprintf(buf, "%d", hookType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerManager.cpp:303:61:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                                                            sprintf(buf, "%d", key);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:37:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:39:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", OsMsg::TAO_MSG);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:61:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:65:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", intData);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:75:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:77:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d %d %d %d ", getMsgSubType(), mCmd, mMsgID, mSocketHandle, mTaoObjHandle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:112:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:114:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d %d %d %d ", getMsgSubType(), mCmd, mMsgID, mSocketHandle, mTaoObjHandle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:133:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:135:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d %d %d %d ", getMsgSubType(), mCmd, mMsgID, mSocketHandle, mTaoObjHandle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:171:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:173:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d %d %d %d ", getMsgSubType(), mCmd, mMsgID, mSocketHandle, mTaoObjHandle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:194:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mMsgID = atoi(tmp.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:197:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                setMsgSubType(atoi(tmp.data()));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:200:33:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mTaoObjHandle = atoi(tmp.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:203:24:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mCmd = atoi(tmp.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:206:33:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mSocketHandle = atoi(tmp.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:209:39:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mMessageQueueHandle = atoi(tmp.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:212:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mArgCnt = atoi(tmp.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:229:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmps[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:231:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmps, "%d %d %d %d %d ", getMsgSubType(), mCmd, mMsgID, mSocketHandle, mTaoObjHandle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:252:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:254:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", OsMsg::TAO_MSG);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:257:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", rTaoMessage.getMsgSubType());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:260:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", rTaoMessage.getMsgID());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:263:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", rTaoMessage.getCmd());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:266:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", rTaoMessage.getTaoObjHandle());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:269:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", rTaoMessage.getSocket());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:272:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", rTaoMessage.getMsgQueueHandle());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:275:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", rTaoMessage.getArgCnt());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:313:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:315:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmp, "%d %d %d %d %d ", getMsgSubType(), mCmd, mMsgID, mSocketHandle, mTaoObjHandle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:325:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:327:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", handle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:338:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:340:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", handle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:351:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:353:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", id);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:364:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:367:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", (int)cmd);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:378:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:380:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", cnt);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:412:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:414:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", handle);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:440:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoMessage.cpp:445:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "st=%d id=%d cmd=%d oh=%d sh=%d qh=%d ac=%d ",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:478:32:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                mHookswState = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:495:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int index = atoi(arg[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:515:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int index = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:530:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int volume = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:550:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int groupType = atoi(arg[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:551:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int gain = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:568:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int groupType = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:569:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int volume = atoi(arg[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:589:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int groupType = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:590:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int volume = atoi(arg[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:608:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int mode = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:643:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int level = atoi(arg[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:780:29:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                int index = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:804:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:805:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", volume);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:826:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int groupType = atoi(arg.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:830:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[32];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:831:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "%d", gain);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:846:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int groupType = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:855:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:856:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", volume);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:874:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int groupType = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:883:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:884:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", volume);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:902:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int groupType = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:911:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:912:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", volume);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:930:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int groupType = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:939:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:940:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", volume);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:1037:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:1043:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", level);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:1046:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:1049:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (mLCDHigh - mLCDOffset));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:1052:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", (nominal - mLCDOffset));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoPhoneComponentAdaptor.cpp:1067:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int size = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderAdaptor.cpp:533:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int     size   = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderAdaptor.cpp:545:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderAdaptor.cpp:549:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", (int)pCalls[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderAdaptor.cpp:617:29:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                int objId = atoi(sProviderListener);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderAdaptor.cpp:678:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int     size   = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderAdaptor.cpp:690:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderAdaptor.cpp:694:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", (int)pProviderListeners[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:492:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int      size =  atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:507:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:516:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", objId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:742:25:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                        char buff[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:743:25:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                        sprintf(buff, "%d", isLocal);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:771:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int      size =  atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:783:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:792:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", objId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:883:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:884:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buff, "%d", nItems);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:992:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:994:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buff, "%d", numConnections);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalAdaptor.cpp:1139:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int level = atoi(rMsg.getArgList());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:297:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char buff[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:299:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buff, "%d", state);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:428:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int toneId = atoi(arg[0]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:429:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int local = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:430:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int remote = atoi(arg[2]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:472:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int repeat = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:473:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int local = atoi(arg[2]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:474:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int remote = atoi(arg[3]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:495:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int repeat = atoi(arg[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:496:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int local = atoi(arg[2]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:497:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int remote = atoi(arg[3]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:535:51:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
   MpStreamPlayer** ppPlayer = (MpStreamPlayer**) atoi(arg[0]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:537:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
   int flags = atoi(arg[2]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:561:48:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
   MpStreamPlayer* pPlayer = (MpStreamPlayer*) atoi(arg[0]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:583:67:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
   MpStreamPlaylistPlayer** ppPlayer = (MpStreamPlaylistPlayer**) atoi(arg[0]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionAdaptor.cpp:610:64:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
   MpStreamPlaylistPlayer* pPlayer = (MpStreamPlaylistPlayer*) atoi(arg[0]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTransportAgent.cpp:105:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char          buffer[DEF_TAO_MAX_SOCKET_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTransportAgent.cpp:174:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&pBuf[0], &cookie, sizeof(unsigned long)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTransportAgent.cpp:175:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&pBuf[sizeof(unsigned long)], &length, sizeof(unsigned long)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTransportAgent.cpp:176:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&pBuf[sizeof(unsigned long)*2], buffer.data(), bufferLen) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTransportTask.cpp:37:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        mRemotePort = atoi(port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:260:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cVersion[80] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:2788:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szPort[32]; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:2789:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(szPort, ":%d", pContact->iPort); 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:5516:13:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
            strcpy(pInst->micSetting.device, "NONE") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:5583:13:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
            strcpy(pInst->speakerSettings[RINGER].device, "NONE") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:5650:13:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
            strcpy(pInst->speakerSettings[SPEAKER].device, "NONE") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:7880:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                cInterface[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:7881:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                cIpAddress[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp:648:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy((void*) pInfo->pContent, pSourceInfo->pContent, pSourceInfo->nContentLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp:694:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy((void*) pInfo->pContent, pSourceInfo->pContent, pSourceInfo->nContentLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp:745:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy(pInfo->pCertificate, pSourceInfo->pCertificate, pSourceInfo->nCertificateSize) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp:778:21:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                    memcpy(&pInfo->codec, &pSourceInfo->codec, sizeof(SIPX_CODEC_INFO)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp:1082:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char cTemp[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp:1627:37:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                                    memcpy(&mediaInfo.codec, pEventData, sizeof(SIPX_CODEC_INFO)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiEvents.cpp:1655:37:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                                    memcpy(&(mediaInfo.codec.videoCodec), videoCodec, sizeof(SIPX_VIDEO_CODEC));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:879:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char numBuf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:880:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(numBuf, "%d", newState);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:2323:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buffer[32];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CallManagerTest.cpp:447:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char actual_prefix[100], actual_counter[100], actual_suffix[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CallManagerTest.cpp:448:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char msg[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/cp/CallManagerTest.cpp:514:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char msg[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:47:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:86:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:132:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:178:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:289:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:389:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:424:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:459:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/CallManagerPlayerTest.cpp:491:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:59:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:104:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:154:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:230:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:308:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:406:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:486:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:586:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:664:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlayerTest.cpp:709:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:49:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:122:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:213:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:298:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:379:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:476:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:556:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:653:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamPlaylistPlayerTest.cpp:665:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(szUrl, "http://64.55.140.162/wakeup-music/chillout/3.mp3") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:54:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:82:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:109:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:138:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:179:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:237:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:282:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:329:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:369:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:396:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:441:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MpStreamQueuePlayerTest.cpp:486:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char szUrl[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:23:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char szString[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:24:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf(szString, "%d-%p,", event.getState(), event.getUserData()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:31:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char szString[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:32:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf(szString, "%d-%p,", event.getState(), event.getUserData()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:39:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char szString[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:40:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf(szString, "%d-%p,", event.getState(), event.getUserData()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:47:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char szString[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:48:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf(szString, "%d-%p,", event.getState(), event.getUserData()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:54:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char szString[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:55:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf(szString, "%d-%p,", event.getState(), event.getUserData()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:61:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char szString[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:62:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf(szString, "%d-%p,", event.getState(), event.getUserData()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:84:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
     char szString[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/mp/MyPlayerListenerHistoryKeeper.cpp:85:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
     sprintf(szString, "%d-%p,", *pPlayerStates, userData) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtAddressForwardingTest.cpp:62:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char pTempChar[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtAddressTest.cpp:58:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char         pTempChar[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtPhoneTerminalTest.cpp:44:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char name[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtPhoneTerminalTest.cpp:61:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char name[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtPhoneTerminalTest.cpp:73:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char name_1[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtPhoneTerminalTest.cpp:85:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char         pTestName[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtTerminalTest.cpp:44:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char name[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtTerminalTest.cpp:62:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char name[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtTerminalTest.cpp:74:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char name_1[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/ptapi/PtTerminalTest.cpp:86:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char         pTestName[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:70:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:71:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:80:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:81:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:90:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:91:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:99:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:100:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:108:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[1024] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:117:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[1024] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:126:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:128:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(szBuffer, "INFO STATUS: %d", pInfoStatus->responseCode);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:135:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:137:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(szBuffer, "INFO STATUS: %d", pInfoStatus->responseCode);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:144:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cBuffer[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:152:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cBuffer[128] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:160:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:168:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:697:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:698:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:720:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:721:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:733:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[1024] ;       
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:746:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[1024] ;    
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:765:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[1024] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:781:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szTemp, szContent, nContentLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:801:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[1024] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:802:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[1024] ;                        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:814:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:815:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[1024] ;                        
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:816:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer3[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:830:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:831:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:832:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer3[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:833:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szType[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:837:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(szType, "AUDIO");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:841:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(szType, "VIDEO");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:856:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:857:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:858:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szType[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:863:12:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
           strcpy(szType, "CRLF");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:866:12:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
           strcpy(szType, "STUN");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:869:12:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
           strcpy(szType, "SIP_PING");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:872:12:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
           strcpy(szType, "SIP_OPTIONS");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:887:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer1[1024] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:888:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer2[1024] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:889:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer3[1024]; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:905:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szBuffer[1024] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventValidator.cpp:912:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szTemp, pInfo->pContent, pInfo->nContentLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/SipSubcriptionTest.cpp:236:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char numBuf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/SipSubcriptionTest.cpp:238:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuf, "%d", UNIT_TEST_SIP_PORT);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/SipSubcriptionTest.cpp:253:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuf, "%d", UNIT_TEST_SIP_PORT2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestExternalTransport.cpp:22:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char gpUserData1[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestExternalTransport.cpp:25:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char gpUserData2[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestExternalTransport.cpp:47:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(gpData1, pData, nData);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestExternalTransport.cpp:70:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(gpData2, pData, nData);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistrar.cpp:221:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char szCode[4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistrar.cpp:227:49:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        finalResponse.setResponseData(&message, atoi(szCode), "OK");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistrar.h:30:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szUsername[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestRegistrar.h:31:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szPassword[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestStunServerTask.cpp:61:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cReadBuffer[10240] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestStunServerTask.cpp:111:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cMsg[100] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestStunServerTask.cpp:302:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cResponseAddress[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestStunServerTask.cpp:374:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cEncoded[4096] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:123:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:190:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:264:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:332:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:387:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:435:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:481:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:527:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:588:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:643:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:693:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:744:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:75:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cBuf[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:177:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cBuf[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:227:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cBuf[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:2115:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char agent[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConference.cpp:167:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char szCallerId[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConference.cpp:1525:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char szCallerId[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:268:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char szBuffer[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:817:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:1659:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szUsername[100] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:1660:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szHostname[100] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:1689:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char        szUrl[100] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:1693:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
    strcpy(szUrl, "<sip:user@host:5060;urlparam=1234>;otherparam=3422") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:1699:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
    strcpy(szUrl, "<sip:user@host:5060;urlparam=1234>;otherparam=3422") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:1705:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
    strcpy(szUrl, "<sip:user@host;urlparam=1234>;otherparam=3422") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:1719:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char        szValue[100] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:143:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cBuf[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:187:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cBuf[256] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:202:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(cBuf, "1234567890") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:234:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char szBuffer[500] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestSubscribe.cpp:282:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szPercolatingContent[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestSubscribe.cpp:285:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(szPercolatingContent, "Percolating %2.2d", i);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestSubscribe.cpp:435:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szPercolatingContent[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestSubscribe.cpp:438:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(szPercolatingContent, "Percolating %2.2d", i);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:313:32:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                unsigned num = atoi(action.args[0].c_str());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:424:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char sdesName[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:425:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(sdesName, "mstream-%d", OsProcess::getCurrentPID());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:472:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                int num = atoi(act->args[0].c_str());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:473:29:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                int count = atoi(act->args[1].c_str());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:589:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rtpPort_local = atoi(pAction->args[0].c_str());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:594:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        rtpPort_remote = atoi(pAction->args[0].c_str());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:629:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int msecs = atoi(pAction->args[0].c_str());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:652:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
          int num = atoi(pAction->args[0].c_str());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:775:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buff[BUFFER_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/interface/CpMediaInterface.cpp:51:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy((void*)&mSrtpParams, (void*)&srtpParameters, sizeof(SdpSrtpParameters));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/CpCryptoTest.cpp:57:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern unsigned char sine_330hz_16b_8k_signed[160116];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/CpCryptoTest.cpp:246:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tempMemory[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/playback_prompt.h:12:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
unsigned char playback_prompt[23978]=
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/record_prompt.h:13:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
unsigned char record_prompt[43940]=
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/sine_330hz_16b_8k_signed.h:14:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
unsigned char sine_330hz_16b_8k_signed[160116]=
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/test/sine_530hz_16b_8k_signed.h:14:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
unsigned char sine_530hz_16b_8k_signed[160116]=
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpArrayBuf.h:101:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char      mpData[1];   ///< Pointer to the data, following this header.
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpBuf.h:224:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
       memcpy(clone.mpBuffer, mpBuffer, mpBuffer->getBufferPool()->getBlockSize());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MpFlowGraphBase.h:850:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char tmpStr[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprBridgeSetGainsMsg.h:58:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mpGains, pGains, mGainsNum*sizeof(MpBridgeGain));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprBridgeSetGainsMsg.h:70:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mpGains, resourceMsg.mpGains, mGainsNum*sizeof(MpBridgeGain));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/MprBridgeSetGainsMsg.h:110:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mpGains, rhs.mpGains, mGainsNum*sizeof(MpBridgeGain));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamBufferDataSource.h:61:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   virtual OsStatus open() ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamDataSource.h:72:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   virtual OsStatus open() = 0 ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamFileDataSource.h:59:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   virtual OsStatus open() ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamHttpDataSource.h:78:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   virtual OsStatus open() ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamWAVFormatDecoder.h:35:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char     ckID[4];               // chunk id 'RIFF'
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/ByeReport.h:398:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char m_uchReason[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SourceDescription.h:1052:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char m_uchCName[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SourceDescription.h:1074:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char m_uchName[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SourceDescription.h:1097:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char m_uchEmail[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SourceDescription.h:1120:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char m_uchPhone[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SourceDescription.h:1142:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char m_uchAppName[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SourceDescription.h:1164:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char m_uchLocation[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SourceDescription.h:1186:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char m_uchNotes[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/rtcp/SourceDescription.h:1208:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char m_uchPrivate[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/FilterBank.cpp:1694:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(AnalysisDL,&AnalysisDL[TWOM], sizeof (int) * (WINDOWSIZE-M));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/FilterBank.cpp:1697:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(&AnalysisDL[WINDOWSIZE-M],Input, sizeof (int) * TWOM);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/FilterBank.cpp:2349:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
       memcpy(DestPtr, SourcePtr, (sizeof (icomplex)) * (ECNumTaps[ECDLHighestAddressBand]-1));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/HandsetFilterBank.cpp:841:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(AnalysisDL,&AnalysisDL[HS_FRAME_SIZE], sizeof (int) * (HS_WINDOWSIZE-HS_M));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/HandsetFilterBank.cpp:844:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(&AnalysisDL[HS_WINDOWSIZE-HS_M],Input, sizeof (int) * HS_FRAME_SIZE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/HandsetFilterBank.cpp:1219:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
       memcpy(DestPtr, SourcePtr, (sizeof (icomplex)) * (ECNumTaps[ECDLHighestAddressBand]-1));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MicThreadWnt.cpp:294:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy( ob->getSamplesWritePtr()
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:76:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char      z[500];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:84:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         len += sprintf(z+len, "%d,", mpInBufs[i].getBufferNumber());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:86:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         len += sprintf(z+len, "-,");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:90:11:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   len += sprintf(z+len, ") -> unprocessed(");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:104:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         len += sprintf(z+len, "%d,", mpInBufs[i].getBufferNumber());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:106:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         len += sprintf(z+len, "-,");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:110:11:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   len += sprintf(z+len, ") -> out(");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:116:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         len += sprintf(z+len, "%d,", mpOutBufs[i].getBufferNumber());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:118:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         len += sprintf(z+len, "-,");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioResource.cpp:122:11:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   len += sprintf(z+len, ")\n");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:145:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char tmpbuf[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:159:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
    strcpy(tmpbuf,"RIFF");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:170:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
    strcpy(tmpbuf,"WAVE");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:177:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
    strcpy(tmpbuf,"fmt ");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:208:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
    strcpy(tmpbuf,"data");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:272:14:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    if (file.open(OsFile::READ_WRITE) == OS_SUCCESS) 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:285:24:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
            if (reader.open() == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:287:26:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                unsigned char chunkId[4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:311:53:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                                    char fmtbuffer[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:398:14:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    if (file.open(OsFile::READ_WRITE) == OS_SUCCESS) 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioWaveFileRead.cpp:378:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char code[5] = "CODE";
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp:349:19:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                  memcpy(pCommonDataPtr, pFirstDataDiffPtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp:365:22:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                     memcpy(pFirstDataDiffPtr, pSecondDataDiffPtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp:384:22:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                     memcpy(pCommonDataPtr, pSecondDataDiffPtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp:428:22:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                     memcpy(pFirstDataDiffPtr, pSecondDataDiffPtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp:465:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(mpMixDataInfoStackTop, pDataInfoStackPtr,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp:524:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char ampLabel[32];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp:525:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char prevAmpLabel[32];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp:526:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
   strcpy(ampLabel, "Bridge_in_0_amplitude");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpBridgeAlgLinear.cpp:527:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
   strcpy(prevAmpLabel, "Bridge_in_0_prev_amplitude");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:788:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   static char saved_playFilename[MAXUNIXPATH] = "";
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:789:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   static char saved_baseName[MAXUNIXPATH] = "";
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:790:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   static char saved_endName[MAXUNIXPATH] = "";
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:1149:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char numBuf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:1150:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(numBuf, "%d", found);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpCallFlowGraph.cpp:1168:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(numBuf, "%d", i);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpDTMFDetector.cpp:153:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char row_col_ascii_codes[4][4] = 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpInputDeviceManager.cpp:253:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(thisFrameData->mFrameBuffer->getSamplesWritePtr(), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpJitterBuffer.cpp:685:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(pWritePtr, mDecodedData+i, inSamplesNum*sizeof(MpAudioSample));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp:137:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp:220:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp:259:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[LOG_MSGQ_ITEM_LEN+1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp:694:24:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
              frames = atoi(latency.data()) / MS_PER_FRAME;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp:701:24:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
              frames = atoi(latency.data()) / MS_PER_FRAME;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp:827:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char rtl_filename[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp:829:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(rtl_filename, "%04u%02u%02u_%02u-%02u-%02u.rtl",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOss.cpp:310:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   mfdDevice = open(devname, O_RDWR);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOss.cpp:313:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char temp[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOss.cpp:317:19:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      mfdDevice = open(devname, O_RDONLY);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOss.cpp:321:22:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
         mfdDevice = open(devname, O_WRONLY);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOss.cpp:527:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char buff[8] = {0};
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResourceTopology.cpp:474:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char numBuf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpResourceTopology.cpp:475:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(numBuf, "%d", resourceNum);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpStreamFeeder.cpp:136:51:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   if ((m_pDataSource != NULL) && (m_pDataSource->open() == OS_SUCCESS))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidAndroid.cpp:64:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   int fd = open(dumpFileName, O_WRONLY | O_TRUNC | O_CREAT, 0666); // O_APPEND
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidAndroid.cpp:133:19:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      sgOutFile = fopen("/sdcard/in.raw", "w");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidAndroid.cpp:570:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(pDriver->mpBufInternal+pDriver->mBufInternalSamples,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidAndroid.cpp:584:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(pDriver->mpBufInternal+pDriver->mBufInternalSamples,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidAndroid.cpp:634:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(pDriver->mpBufInternal, buffer->i16+origSamplesConsumed,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodAndroid.cpp:49:19:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      sgOutFile = fopen("/sdcard/out.raw", "w");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodAndroid.cpp:256:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(mpSampleBuffer, samples, mSamplesPerFrame*sizeof(MpAudioSample));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodAndroid.cpp:366:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(buffer->i16, pDriver->mpSampleBuffer+pDriver->mSampleBufferIndex, samplesToCopy*sizeof(short));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodBufferRecorder.cpp:119:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char fileName[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodBufferRecorder.cpp:160:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mpBuffer+mBufferEnd, samples, sizeof(MpAudioSample)*samplesToCopy);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodCoreAudio.cpp:284:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mAudioFrameData, samples, numSamples * sizeof(MpAudioSample));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodOss.cpp:188:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mAudioFrame, samples, numSamples * sizeof(MpAudioSample));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpodWinMM.cpp:627:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(pWaveHdr->lpData, samples, sizeof(MpAudioSample)*numSamples);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprBridge.cpp:129:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mpContributorVector, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprBridge.cpp:227:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(pGainsCopy, gains, numWeights*sizeof(MpBridgeGain));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprBridge.cpp:252:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(pGainsCopy, gains, numWeights*sizeof(MpBridgeGain));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromFile.cpp:584:35:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
         if (0 != (audioFilePtr = fopen(audioFileName, "rb")))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromFile.cpp:650:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(outAudBuf, audBuf, audBufSz);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromFile.cpp:725:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(outbuf, &(mpFileBuffer->data()[mFileBufferIndex]),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromFile.cpp:738:16:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
               memcpy(&outbuf[(totalBytesRead/sizeof(MpAudioSample))],
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromInputDevice.cpp:61:21:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      sgInRawFile = fopen("/sdcard/fg_in_raw.raw", "w");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromInputDevice.cpp:62:26:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      sgInResampleFile = fopen("/sdcard/fg_in_resample.raw", "w");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromNet.cpp:426:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(&rtpBuf->getRtpHeader(), buf->getDataPtr(), sizeof(RtpHeader));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprFromNet.cpp:498:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy( rtpBuf->getDataWritePtr(), buf->getDataPtr()+offset
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:84:14:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      file = open(filename, O_BINARY | O_CREAT | O_RDWR, 0640);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:491:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(&mpBuffer[mSamplesRecorded], pBuffer, toWrite*sizeof(MpAudioSample));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:498:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char tmpbuf[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:510:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
   strcpy(tmpbuf,"RIFF");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:517:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
   strcpy(tmpbuf,"WAVE");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:522:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
   strcpy(tmpbuf,"fmt ");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:538:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
   strcpy(tmpbuf,"data");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToNet.cpp:274:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(pBuf, &pRtpPacket->getRtpHeader(), sizeof(RtpHeader));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToNet.cpp:280:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(pBuf, payloadData, payloadOctets);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToNet.cpp:425:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy((char *) &rh, (char *) rp, sizeof(struct RtpHeader));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToNet.cpp:434:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy((char *) rp, (char *) &rh, sizeof(struct RtpHeader));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprToOutputDevice.cpp:60:20:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      sgSpkrFile = fopen("/sdcard/spkr.raw", "w");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/NetInTask.cpp:215:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char junk[MAX_RTP_BYTES];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/NetInTask.cpp:287:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char buffer[UDP_MTU];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/SpeakerThreadWnt.cpp:324:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(pWH->lpData, ob->getSamplesPtr(), bufLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamBufferDataSource.cpp:48:34:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
OsStatus StreamBufferDataSource::open()
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamBufferDataSource.cpp:97:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(szBuffer, &mpBuffer->data()[miPosition], iMaxCopy);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamBufferDataSource.cpp:122:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(szBuffer, &mpBuffer->data()[iPosition], iMaxCopy) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamFileDataSource.cpp:53:32:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
OsStatus StreamFileDataSource::open()
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamFileDataSource.cpp:70:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		 status = mpFile->open(OsFile::READ_ONLY) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamFileDataSource.cpp:175:12:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      rc = open();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamHttpDataSource.cpp:73:32:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
OsStatus StreamHttpDataSource::open()
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamHttpDataSource.cpp:209:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(szBuffer, &mBuffer.data()[miOffset-miBufferOffset], iLengthRead) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamHttpDataSource.cpp:217:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(szBuffer, &mBuffer.data()[pos], iLengthRead) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamHttpDataSource.cpp:271:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(szBuffer, &mBuffer.data()[miOffset-miBufferOffset], iLengthRead) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamHttpDataSource.cpp:276:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(szBuffer, &mBuffer.data()[miOffset-miBufferOffset], iLengthRead) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamHttpDataSource.cpp:346:25:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
               status = open() ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamHttpDataSource.cpp:568:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
      iTrueLength = atoi(pValue) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamQueueMsg.cpp:87:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(pSamples, mSamples, sizeof(mSamples)) ;  
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:215:19:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         unsigned char  InBuffer[NUM_SAMPLES*2] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:322:33:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                                memcpy(partialFrame, (const unsigned short *)OutBuffer+iCount,iToCopy*sizeof(MpAudioSample)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:330:30:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                             memcpy(&partialFrame[nSamplesPartialFrame],(const unsigned short *)OutBuffer+iCount, iToCopy*sizeof(MpAudioSample)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:368:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char Header[128]; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:438:21:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                    memcpy(&mFormatChunk, &formatChunkInfo, sizeof(formatChunkInfo)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:477:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char tmpbuf[16000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgaac/plgaac.c:273:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char configBits[SDP_AUDIO_CONFIG_LINE_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgaac/plgaac.c:306:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(codecContext->extradata, configBits, SDP_AUDIO_CONFIG_LINE_SIZE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgaac/plgaac.c:504:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(pcmAudioBuffer, tmpBuffer, decodedSampleBytes <= pcmBufferSize * sizeof(int16_t) ? decodedSampleBytes : pcmBufferSize * sizeof(int16_t)); 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgaac/plgaac.c:536:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(&(codecContext->pkt->data[codecContext->pkt->pos]), pcmAudioBuffer, pcmAudioSamples * sizeof(audio_sample_t));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgaac/plgaac.c:644:21:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                    memcpy(&(codecContext->pkt->data[0]), &(codecContext->pkt->data[consumedInputBytes]), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgamr/PlgAmr.c:366:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(&pCodecData->mpBuffer[pCodecData->mBufferLoad], pAudioBuffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgamr/PlgAmr.c:418:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         *octet_align = atoi(&sep[sizeof(sgOctetAlignParam)]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgamr/PlgAmr.c:427:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         *dtx = atoi(&sep[sizeof(sgDtx)]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgamrwb/PlgAmrWB.c:376:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(&pCodecData->mpBuffer[pCodecData->mBufferLoad], pAudioBuffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plggsm/PlgGsm.c:173:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(&mpGsm->mpBuffer[mpGsm->mBufferLoad], pAudioBuffer, SIZE_OF_SAMPLE*cbAudioSamples);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgilbc/PlgIlbc.c:305:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(&mpiLBC->mpBuffer[mpiLBC->mBufferLoad], pAudioBuffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgspeex/PlgSpeex.c:440:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(&mpSpeexEnc->mpBuffer[mpSpeexEnc->mBufferLoad], pAudioBuffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp:445:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(&last_buffer[N_SAMPLES / 2], &buffer[N_SAMPLES / 2], BUFLEN / 2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp:552:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   fd = open("/dev/dsp", O_RDWR);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp:628:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   fd = open("/dev/audio", O_RDWR);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp:703:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char buffer[16000 / UPDATE_FREQUENCY];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp:844:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char entry[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp:848:14:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   cpuinfo = fopen("/proc/cpuinfo","r");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp:863:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         speed = atoi(&entry[10]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dtmflib.cpp:348:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char locale[3];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dtmflib.cpp:707:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char x[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dtmflib.cpp:880:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char s[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/mpau.cpp:56:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char header[24];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/NetworkChannel.cpp:613:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy((void*)lpAddr, (void*)&m_ipRemote, sizeof(m_ipRemote));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/NetworkChannel.cpp:628:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy((void*)&m_ipRemote, (void*)lpAddr, sizeof(m_ipRemote));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCManager.cpp:454:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   static char buff[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCManager.cpp:469:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buff, "%d", ulMsgType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPRender.cpp:342:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char uchSDESReport[MAX_BUFFER_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPRender.cpp:397:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char uchByeReport[MAX_BUFFER_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPRender.cpp:458:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char uchRTCPReport[MAX_BUFFER_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPRender.cpp:501:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(uchRTCPReport + ulReportLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPRender.cpp:564:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char uchByeReport[MAX_BUFFER_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPSession.cpp:835:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        unsigned char uchFieldBuffer[MAX_ENTRYSIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPSession.cpp:903:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        unsigned char uchFieldBuffer[MAX_ENTRYSIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPSession.cpp:1098:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        unsigned char uchReason[MAX_ENTRYSIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPSession.cpp:1203:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        unsigned char uchFieldBuffer[MAX_ENTRYSIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/RTCPSession.cpp:1387:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        unsigned char uchReason[MAX_ENTRYSIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1306:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char uchHostName[MAX_ENTRYSIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1607:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char   uchFieldBuffer[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1724:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char   uchFieldBuffer[MAX_SOURCE_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpDspUtilsTest.cpp:184:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(pSrcDst, &add_int16_int32_vec_src2[i], ADD_INT16_INT32_TEST_LENGTH*sizeof(int32_t));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpDspUtilsTest.cpp:201:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(pSrcDst, &add_int16_int32_vec_src2[i], ADD_INT16_INT32_TEST_LENGTH*sizeof(int32_t));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpDspUtilsTest.cpp:218:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(pSrcDst, &add_int16_int32_vec_src2[i], ADD_INT16_INT32_TEST_LENGTH*sizeof(int32_t));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpDspUtilsTest.cpp:235:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(pSrcDst, &add_int16_int32_vec_src2[i], ADD_INT16_INT32_TEST_LENGTH*sizeof(int32_t));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpDspUtilsTest.cpp:254:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(pSrcDst, &add_int16_float_vec_src2[i], ADD_INT16_INT32_TEST_LENGTH*sizeof(int32_t));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpDspUtilsTest.cpp:271:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(pSrcDst, &add_int16_float_vec_src2[i], ADD_INT16_INT32_TEST_LENGTH*sizeof(int32_t));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputDeviceDriverTest.cpp:184:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char tmpBuf[NUMSTRSZ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputDeviceManagerTest.cpp:294:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char frameMessage[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputDeviceManagerTest.cpp:304:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(frameMessage, "Validating frame: %d", frameIndex);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputOutputFrameworkTest.cpp:541:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char devName[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputOutputFrameworkTest.cpp:689:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char devName[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputOutputFrameworkTest.cpp:831:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char devName[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputOutputFrameworkTest.cpp:1000:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char devName[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputOutputFrameworkTest.cpp:1066:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char devName[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputOutputFrameworkTest.cpp:1096:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char devName[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpInputOutputFrameworkTest.cpp:1156:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char devName[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpMMTimerTest.cpp:99:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char errStrBuf[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpMMTimerTest.cpp:126:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char errStrBuf[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/test/mp/MpOutputDriverTest.cpp:308:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char tmpBuf[TMPBUFLEN];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsEncryption.h:128:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char mKey[OE_MAX_KEY_LEN]; // storage of password
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsEncryption.h:140:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char mHeader[OE_MAX_RESULTS_HEADER_LEN];    // set/expect extra data in results buffer
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsFileBase.h:93:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   virtual OsStatus open(const int mode = READ_WRITE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatConnectionSocket.h:414:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char      mszFragment[(MAX_RTP_BYTES + 4)];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunMessage.h:158:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szReasonPhrase[STUN_MAX_STRING_LENGTH+1] ;  
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunMessage.h:396:35:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                  char        results[20]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunMessage.h:412:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                   mUsername[STUN_MAX_STRING_LENGTH+1] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunMessage.h:414:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                   mPassword[STUN_MAX_STRING_LENGTH+1] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunMessage.h:416:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                   mRealm[STUN_MAX_STRING_LENGTH+1] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunMessage.h:418:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                   mNonce[STUN_MAX_STRING_LENGTH+1] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunMessage.h:420:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                   mMessageIntegrity[STUN_MAX_MESSAGE_INTEGRITY_LENGTH] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/StunMessage.h:428:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char                   mServer[STUN_MAX_STRING_LENGTH+1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/WinCE/WinCEFixups.h:107:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char		name[ 260 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/WinCE/WinCEFixups.h:182:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern char		*_tzname[ 2 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/WinCE/WinCEFixups.h:232:8:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
int				open( const char *filename, int oflag );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/WinCE/WinCEFixups.h:234:8:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
int				open( const char *filename, int oflag, int pmode );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/WIndowsAdapterInfo.h:23:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char AdapterName[MAX_ADAPTER_NAME_LENGTH + 4];  //long adapter name
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/WIndowsAdapterInfo.h:24:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char IpAddress[40];                                                             //ip address of adapter
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/getWindowsDNSServers.h:75:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char String[4 * 4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/getWindowsDNSServers.h:98:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char AdapterName[MAX_ADAPTER_NAME_LENGTH + 4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/getWindowsDNSServers.h:99:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char Description[MAX_ADAPTER_DESCRIPTION_LENGTH + 4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/getWindowsDNSServers.h:206:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char HostName[MAX_HOSTNAME_LEN + 4] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/getWindowsDNSServers.h:207:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char DomainName[MAX_DOMAIN_NAME_LEN + 4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/wnt/getWindowsDNSServers.h:211:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char ScopeId[MAX_SCOPE_ID_LEN + 4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlSerialized.h:48:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mData, rhs.mData, rhs.getSize());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlSerialized.h:106:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mpEnd, val.data(), length);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlSerialized.h:129:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy((void*)val.data(), mpEnd, length);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlSerialized.h:148:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mData, rhs.mData, rhs.getSize());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/utl/UtlString.h:674:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char   mBuiltIn[DEFAULT_UTLSTRING_CAPACITY];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/xmlparser/tinystr.h:211:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char smallstr [2];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/hmac-sha1/hmac-sha1.c:22:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cTempKey[20] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/hmac-sha1/hmac-sha1.c:23:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char iPad[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/hmac-sha1/hmac-sha1.c:24:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char oPad[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/hmac-sha1/hmac-sha1.c:44:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(iPad, pKey, nKey) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/hmac-sha1/hmac-sha1.c:45:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(oPad, pKey, nKey) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:86:19:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
       FILE *fp = fopen(filename,"rb");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:354:19:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
       FILE *fp = fopen(filename,"wb");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:435:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cTemp[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:436:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(cTemp, "%d", iNewValue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:552:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
      rValue = atoi(value.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:640:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cTemp[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:643:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(cTemp, "%d", iCount++);   
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:664:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cTemp[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:673:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(cTemp, "%d", i+1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:713:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
              port = atoi(value.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:817:18:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
            file.open(OsFile::CREATE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:917:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    retval = osfile.open(OsFile::READ_ONLY);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:951:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char fileLine[MAX_FILELINE_SIZE + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:1020:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char configLine[MAX_FILELINE_SIZE + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:126:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char buffer[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:132:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(buffer + 2 * i, "%02X", *p++);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:203:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char hostentBuf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDatagramSocket.cpp:269:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char hostentBuf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDatagramSocket.cpp:557:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(remoteHostAddress, &(pAddr->sin_addr), sizeof(struct in_addr));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:390:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char dateBuffer[200];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:410:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(const_cast<char*>(dateString.data()), "%4d-%02d-%02d %02d:%02d:%02d.%03d", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:421:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(const_cast<char*>(dateString.data()), "%4d-%02d-%02dT%02d:%02d:%02d.%03dZ", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:432:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(const_cast<char*>(dateString.data()), "%4d-%02d-%02dT%02d:%02d:%02d.%06dZ", 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:440:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char dateBuffer[200];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:457:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy( ampm, "PM" );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:464:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char tz[4] = {"   "};
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDateTime.cpp:488:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(tz, timezone.data(), 3);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsEncryption.cpp:104:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(mKey, key, mKeyLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsEncryption.cpp:111:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(mHeader, header, mHeaderLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsEncryption.cpp:243:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(mResults, mData, mDataLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsEncryption.cpp:259:21:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                    memcpy(out, mHeader, mHeaderLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsEncryption.cpp:306:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char errbuff[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:123:33:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    if(OS_SUCCESS == fileToRead.open(READ_ONLY))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:125:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buffer[READ_BUFFER_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:159:34:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    if(OS_SUCCESS == fileToWrite.open(WRITE_ONLY) &&
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:228:22:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
OsStatus OsFileBase::open(const int mode)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:259:21:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    mOsFileHandle = fopen(mFilename.data(),fmode);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:564:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        if (open() == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:570:25:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                newFile.open(CREATE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:626:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[5];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:632:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    if (exists() && open() == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:644:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        open(CREATE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:717:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[2];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileSystem.cpp:194:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileSystem.cpp:266:28:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
                    OsFile tmpfile(entry);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileSystem.cpp:267:25:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
                    if (tmpfile.remove(bForce) != OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsMulticastSocket.cpp:106:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char hostentBuf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:252:25:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                        char cResponseAddress[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:278:25:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                        char mappedAddress[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:366:25:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                        char relayAddress[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:1727:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cEncoded[10240] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:1919:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(&pBinding->oldTransactionsIds[i], 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:1925:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(&pBinding->oldTransactionsIds[index], 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:1957:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(&pBinding->oldTransactionsIds[i], 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:1963:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(&pBinding->oldTransactionsIds[index], 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatAgentTask.cpp:2226:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cBuf[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:369:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char cBuf[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:668:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(szFramedBuffer, &typeByte, sizeof(u_short));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:671:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(szFramedBuffer + sizeof(u_short), &packetLength, sizeof(u_short));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:673:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(szFramedBuffer + (2 * sizeof(u_short)), buffer, bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:684:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szStreamChunk [(MAX_RTP_BYTES + 4) * 2];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:701:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szStreamChunk, mszFragment, mFragmentSize);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:702:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szStreamChunk + mFragmentSize, pData, size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:708:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szStreamChunk, pData, size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:713:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(&packLen, szStreamChunk + sizeof(u_short), sizeof(u_short));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:748:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(mszFragment, pStreamBuffer, mFragmentSize);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:787:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szPort[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:788:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(szPort, "%d", port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:826:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szPort[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:827:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(szPort, "%d", port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:307:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char cBuf[2048] ;            
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:358:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char cBuf[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:395:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char cBuf[2048];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatSocketBaseImpl.cpp:165:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szCopy, pBuf, length) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatSocketBaseImpl.cpp:181:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(szCopy, pBuf, length) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatSocketBaseImpl.cpp:207:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(buffer, pData, nData) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatSocketBaseImpl.cpp:212:21:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                    char     remoteAddr[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:356:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char drive[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:357:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char pname[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:358:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char path[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:359:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char fname[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:360:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char name[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:361:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char ext[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProcessMgr.cpp:310:24:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            if (pid == atoi(nextValue.data()))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProcessMgr.cpp:350:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            int pid = atoi(value.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProcessMgr.cpp:428:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        else if (atoi(value) > 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProcessMgr.cpp:644:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProcessMgr.cpp:645:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buf,"%d",pid);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsProcessMgr.cpp:718:23:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        gFile_descr = open(lockFullPath.data(),O_RDWR | O_CREAT | O_EXCL,0644);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSL.cpp:497:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char sslErrorString[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSL.cpp:507:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char humanReadableName[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSL.cpp:577:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char issuer[256]; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSL.cpp:578:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char subject[256]; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:849:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char ipaddress[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:850:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char adapter_id[30];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:912:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char nameBuffer[DOMAIN_NAME_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:925:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char domain[DOMAIN_NAME_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:939:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char nameBuffer[HOST_NAME_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:952:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char ipAddr[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:961:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char ipAddr[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:963:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(ipAddr, "%d.%d.%d.%d", ip_int >> 24, (ip_int >> 16) & 255, (ip_int >> 8) & 255, ip_int & 255);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:997:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char tmp[50];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:1029:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(remoteHostAddress, &(remoteAddr.sin_addr), sizeof(struct in_addr));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:1108:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	   char hostentBuf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:1287:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char temp_addr[30];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocketCrypto.cpp:139:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(buffer, mDecodeBuffer, sizeof(struct rtpHeader));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocketCrypto.cpp:157:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(buffer, mDecodeBuffer, decodedLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocketCrypto.cpp:191:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(mCryptoBuffer, buffer, sizeof(struct rtpHeader));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:395:32:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
         if ((mpUnboundedLog = fopen(mUnboundedLogFile.data(), "a+")) == NULL)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:438:35:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
            if ((mpUnboundedLog = fopen(mUnboundedLogFile.data(), "a+")) == NULL)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:647:36:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
             if ((mpUnboundedLog = fopen(szFile, "a+")) == NULL)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:672:19:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
         if (file.open(OsFile::READ_ONLY) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:749:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
       port = atoi((char*) &portStart[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:809:22:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
            if (file.open(OsFile::WRITE_ONLY | OsFile::TRUNCATE | OsFile::CREATE) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSClientConnectionSocket.cpp:223:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char buffer[PR_NETDB_BUF_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTask.cpp:182:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char nameBuffer[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTimeLog.cpp:209:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char timeString[40];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTimeLog.cpp:239:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(timeString, "\t%ld.%.6ld", time.seconds(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTimeLog.cpp:246:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(timeString, "\t%ld.%.6ld", deltaTime.seconds(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:56:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char *p = (char *)memchr(lookIn, lookFor[0], lookInLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:211:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        unsigned char octets[4] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:255:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        unsigned char octetsDest[4] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:256:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        unsigned char octetsIp[4] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:257:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        unsigned char octetsNetMask[4] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:291:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char hostentBuf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:335:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char str[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:356:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char tmpYear[5];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:369:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char tmpYear[5];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsUtil.cpp:388:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char      str[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:142:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(mpRawData, pBuf, mnRawData) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:149:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(&mMsgHeader, pTraverse, sizeof(STUN_MESSAGE_HEADER)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:170:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&header, pTraverse, sizeof(STUN_ATTRIBUTE_HEADER)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:306:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(mpRawData, pBuf, mnRawData) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:434:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(&mMsgHeader.magicId, &rMagicId, sizeof(STUN_MAGIC_ID)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:439:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(&mMsgHeader.transactionId, &rTransactionId, sizeof(STUN_TRANSACTION_ID)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:629:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(pMagic, &mMsgHeader.magicId, sizeof(STUN_MAGIC_ID)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:635:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(pTransactionId, &mMsgHeader.transactionId, sizeof(STUN_TRANSACTION_ID)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:768:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(cMessageIntegrity, mMessageIntegrity, STUN_MAX_MESSAGE_INTEGRITY_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:890:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(&header, pTraverse, sizeof(STUN_MESSAGE_HEADER)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:959:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(&fingerPrintValue, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1042:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pBuf, &value, sizeof(uint16_t)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1061:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pBuf, &value, sizeof(uint32_t)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1081:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(pBuf, cRaw, length) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1173:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cPadding[STUN_MIN_CHAR_PAD] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1191:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cPadding[STUN_MIN_CHAR_PAD] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1217:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cPad[STUN_MIN_CHAR_PAD] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1373:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pAddress, pBuf, sizeof(STUN_ATTRIBUTE_ADDRESS)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1388:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pAddress, pBuf, sizeof(STUN_ATTRIBUTE_ADDRESS)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1408:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pShort, pBuf, sizeof(uint16_t)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1422:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pLong, pBuf, sizeof(uint32_t)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1438:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pString, pBuf, sipx_min(nLength, STUN_MAX_STRING_LENGTH)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1461:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pDest, pBuf, nDest) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1482:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(pError->szReasonPhrase, pBuf, sipx_min(nLength, STUN_MAX_STRING_LENGTH)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1515:37:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                    char        results[20]) 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1520:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(pTempBuf, pDataIn, nDataIn) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:45:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cMappedIp[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:47:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cChangedIp[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:78:21:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                    char cMappedIp2[64] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:134:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cMsgSend[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:136:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cMsgReceive[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:205:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cMsgSend[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:207:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cMsgReceive[2048] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:482:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cTemp[1024] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:504:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(cTemp, "%02X", msgHeader.transactionId.id[i]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:529:25:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                        sprintf(cTemp, "%02X", ch) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/TurnMessage.cpp:230:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(mszTurnData, pData, nLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/TurnMessage.cpp:405:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(&header, pTraverse, sizeof(STUN_MESSAGE_HEADER)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:17:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char	*_tzname[ 2 ] = {"DST","STD"};
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:108:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t	wBuf[ MAX_PATH + 1 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:113:10:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
		iRet = MultiByteToWideChar( CP_ACP, 0, pFileName, strlen( pFileName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:132:5:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
int open( const char *filename, int oflag, int pmode = 0 )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:161:5:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
int open( const char *filename, int oflag )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:164:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	return open( filename, oflag, 0 );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:247:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t	wBuf[ MAX_PATH + 1 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:252:10:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
		iRet = MultiByteToWideChar( CP_ACP, 0, pName, strlen( pName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:273:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t	wBuf[ MAX_PATH + 1 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:278:10:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
		iRet = MultiByteToWideChar( CP_ACP, 0, pName, strlen( pName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:491:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t	wBuf[ MAX_PATH + 1 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:497:10:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
		iRet = MultiByteToWideChar( CP_ACP, 0, pIn, strlen( pIn ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:528:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t	wBuf[ MAX_PATH + 1 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:533:10:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
		iRet = MultiByteToWideChar( CP_ACP, 0, pIn, strlen( pIn ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:590:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(cP,"\\\\Windows");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:628:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char cErrMsg[ 100 ] = { 0 };
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:631:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf( cErrMsg, "Unable to lookup error message for error %d\n", iErrNo );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:658:8:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       wchar_t	wBuf[ MAX_PATH + 1 ];	
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:660:15:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
       iRet = MultiByteToWideChar( CP_ACP, 0, lpFileName, strlen( lpFileName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:663:8:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       wchar_t	wBuf2[ MAX_PATH + 1 ];	
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:666:16:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
       iRet2 = MultiByteToWideChar( CP_ACP, 0, lpFileName2, strlen( lpFileName2 ), wBuf2, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:680:8:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       wchar_t	wBuf[ MAX_PATH + 1 ];	
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:682:15:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
       iRet = MultiByteToWideChar( CP_ACP, 0, lpFileName, strlen( lpFileName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:713:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t	wBuf[ MAX_PATH + 1 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:718:10:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
		iRet = MultiByteToWideChar( CP_ACP, 0, filename, strlen( filename ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:850:5:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    wchar_t wBuf[ MAX_PATH + 1 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:855:16:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
        iRet = MultiByteToWideChar( CP_ACP, 0, lpName, strlen( lpName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:952:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t	wBuf[ MAX_PATH + 1 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:957:10:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
		iRet = MultiByteToWideChar( CP_ACP, 0, lpFileName, strlen( lpFileName ), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:979:5:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    wchar_t	wBuf[ MAX_PATH + 1 ];	
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:981:12:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
    iRet = MultiByteToWideChar( CP_ACP, 0, lpFileName, strlen( lpFileName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:1005:16:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
        iRet = MultiByteToWideChar(CP_ACP, 0, lpFindFileData->cFileName, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:1076:16:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
        iRet = MultiByteToWideChar(CP_ACP, 0, lpFileName, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/wince_strftime.cpp:69:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char *			tzname[2] = {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/wince_strftime.cpp:78:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *	mon[MONSPERYEAR];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/wince_strftime.cpp:79:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *	month[MONSPERYEAR];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/wince_strftime.cpp:80:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *	wday[DAYSPERWEEK];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/wince_strftime.cpp:81:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *	weekday[DAYSPERWEEK];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/wince_strftime.cpp:149:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	buf[INT_STRLEN_MAXIMUM(int) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/wince_strftime.cpp:310:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char		buf[INT_STRLEN_MAXIMUM(
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsFileSystemWnt.cpp:96:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsFileWnt.cpp:143:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = open(CREATE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsTaskWnt.cpp:350:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char     idString[30];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsTaskWnt.cpp:457:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char  idString[30];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/OsTaskWnt.cpp:499:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char      idString[30];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:54:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char FullDLLPath[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:106:25:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
                        strcat(FullDLLPath,"\\iphlpapi.dll");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:267:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char MacAddressStr[256]; //mac address converted to a string
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:268:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char MacOneByteStr[10]; //used to hold one byte of mac address
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:299:49:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                                                sprintf(MacOneByteStr,"%02X",pAdapterInfo->Address[loop]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:302:49:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                        strcpy((char *)adapters[AdapterCount].MacAddress, MacAddressStr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:113:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char caFullDLLPath[_MAX_PATH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:124:4:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
			strcat(caFullDLLPath,"\\iphlpapi.dll");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:400:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char regDNSServers[MAXNUM_DNS_ENTRIES][MAXIPLEN]; //used to store registry DNS entries 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:487:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szAdapterId[MAX_ADAPTER_NAME_LENGTH + 4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:491:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(szAdapterId, "eth%u", adapterId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:543:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szAdapterId[MAX_IP_ADDRESSES];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:546:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(szAdapterId, "eth%u", adapterId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsDateTimeLinux.cpp:230:16:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        proc = fopen("/proc/uptime","r");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsFileLinux.cpp:151:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = open(CREATE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessIteratorLinux.cpp:114:18:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    if (procFile.open(OsFile::READ_ONLY) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessIteratorLinux.cpp:146:41:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                        rProcess.mPID = atoi(ptr+4);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessIteratorLinux.cpp:151:47:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                        rProcess.mParentPID = atoi(ptr+5);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessLinux.cpp:187:37:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    const char ** parms = new const char * [parameterCount + 2];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessLinux.cpp:270:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessLinux.cpp:271:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buf,"%d",pid);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/host_address.c:41:23:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      FILE * routes = fopen("/proc/net/route", "r");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/host_address.c:44:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char line[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/host_address.c:52:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char query[9];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/host_address.c:53:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(query, "%%%ds %%x", length);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/host_address.c:107:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char if_name[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/host_address.c:114:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char if_name[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/ipcperf.c:188:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char hostentBuf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/main.cpp:32:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char recvBuf[RECV_BUF_LEN];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/main.cpp:34:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char eMsg[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/main.cpp:58:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(eMsg, "wrote TCP %d of %d bytes", bytesWritten, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/main.cpp:74:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(eMsg, "wrote TCP %d of %d bytes", bytesWritten, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileSystemTest.cpp:155:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char buf[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileSystemTest.cpp:156:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(buf,"%d",loop);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileSystemTest.cpp:160:20:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
            delete tmpfile;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:96:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char wbuff[10000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:102:22:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = wfile.open(OsFile::CREATE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:122:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char rbuff[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:125:22:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = rfile.open();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:223:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = testFile1.open(OsFile::READ_ONLY | OsFile::FSLOCK);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:226:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = testFile1.open(OsFile::READ_ONLY);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:229:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = testFile2.open(OsFile::READ_WRITE | OsFile::FSLOCK_WAIT);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:232:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = testFile3.open(OsFile::READ_WRITE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:235:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = testFile4.open(OsFile::READ_WRITE | OsFile::FSLOCK);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:240:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        stat = testFile4.open(OsFile::READ_WRITE | OsFile::FSLOCK);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp:127:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char recvBuf[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp:185:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char recvBuf[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTestUtilities.cpp:89:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char wbuff[10000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTestUtilities.cpp:96:18:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    stat = wfile.open(OsFile::CREATE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTestUtilities.cpp:127:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char rbuff[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTestUtilities.cpp:130:18:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    stat = rfile.open();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/StunMessageTest.cpp:37:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szString[1024] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/StunMessageTest.cpp:131:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char encoded[4096] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/StunMessageTest.cpp:229:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char   cBuf[4096] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/TurnMessageTest.cpp:40:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szString[1024] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/TurnMessageTest.cpp:126:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char encoded[4096] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/TurnMessageTest.cpp:201:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szString[1024] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/TurnMessageTest.cpp:251:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char encoded[4096] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestAsserts.h:59:21:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                    char _sipxportunit_message[SIPX_PORT_UNIT_MAX_ERROR_MESSAGE_SIZE]; \
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestAsserts.h:98:21:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                    char _sipxportunit_message[SIPX_PORT_UNIT_MAX_ERROR_MESSAGE_SIZE]; \
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestClass.h:107:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char message[SIPX_PORT_UNIT_MAX_ERROR_MESSAGE_SIZE]; \
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestClass.h:188:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buffer[SIPX_PORT_UNIT_MAX_ERROR_MESSAGE_SIZE]; \
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestClass.h:427:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char mPriorTestPointFileName[SIPX_PORT_UNIT_MAX_TEST_FILENAME_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestConstructor.cpp:82:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char message[SIPX_PORT_UNIT_MAX_ERROR_MESSAGE_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:119:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buffer[SIPX_PORT_UNIT_MAX_ERROR_MESSAGE_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:120:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buffer, "current class index: %d\ncurrent method index: %d\ncurrent test point index: %d\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:157:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buffer[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:158:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buffer, "ABORT: due to caught signal: %d", signalCaught);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:231:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char buffer[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:288:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buffer[SIPX_PORT_UNIT_MAX_ERROR_MESSAGE_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:289:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buffer, "Total: %d test class(es), %d test method(s), ?? test points\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:293:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buffer, "Ran: %d test class(es), %d test method(s), %d test points\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:298:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buffer, "%d test points passed, %d test points failed, %d tests aborted\n",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:322:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:345:14:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
             sprintf(buffer, "  %d) ", failureIndex + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestUtilities.h:165:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    static char m_bugMessage[MAX_BUG_MESSAGE_LEN];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlCryptoTest.cpp:67:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char buffer[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlCryptoTest.cpp:68:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char tempMemory[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlDList.cpp:170:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char strItr[33] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlDList.cpp:171:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(strItr, "%d", i);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashBag.cpp:728:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char tmpString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashMap.cpp:904:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char tmpString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashMapPerformance.cpp:47:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char mynum[3];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlHashMapPerformance.cpp:48:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(mynum, "%02d", getUserData());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlLinkTest.cpp:384:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char msg[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlLinkTest.cpp:385:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(msg,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlLinkTest.cpp:402:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(msg,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlListPerformance.cpp:50:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char mynum[3];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlListPerformance.cpp:51:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(mynum, "%02d", getUserData());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:178:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char strItr[33] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:179:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(strItr, "%d", expectedIndex);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:190:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char strItr[33] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:191:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(strItr, "%d", expectedIndex);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:266:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char strOldItr[33] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:267:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char strItr[33] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:268:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(strOldItr, "%d", k) ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:269:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(strItr, "%d", expectedIndex);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:343:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char strOldItr[33] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:344:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char strItr[33] ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:345:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(strOldItr, "%d", k) ; 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlSortedList.cpp:346:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(strItr, "%d", expectedIndex);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp:391:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
          char description[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp:713:26:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            MEMBER_CONST char rhs[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp:714:26:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            MEMBER_CONST char lhs[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_NonMutating.cpp:727:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlTokenizerTest.cpp:80:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKey.cpp:305:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char triplet[3];       // Triplet of source binary chars
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKey.cpp:306:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char quadCode[4];      // Triplet encoded as four base64 chars
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKey.cpp:397:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char quadCode[4];      // Group of four source base64 chars
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKey.cpp:398:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char triplet[3];       // Triplet of decoded binary chars
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKeyRsa.cpp:71:18:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
   FILE *pFile = fopen(pFilename, "rt");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKeyRsa.cpp:253:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char md[EVP_MAX_MD_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKeyRsa.cpp:276:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char md[EVP_MAX_MD_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKeySym.cpp:281:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(buffer, mpKey, mKeyLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlCryptoKeySym.cpp:282:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   memcpy(buffer + mKeyLen, mpIv, mIvLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlInt.cpp:94:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlInt.cpp:95:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buf, "%d", valueToStringify);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlLongLongInt.cpp:125:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char digitBuffer[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlLongLongInt.cpp:130:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(digitBuffer, longLongString, numDigits - 9);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlLongLongInt.cpp:146:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(digitBuffer, &longLongString[numDigits - 18], 9);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlLongLongInt.cpp:152:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(digitBuffer, longLongString, remainingDigits);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRegex.cpp:92:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(re, regex.re, regex.re_size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRegex.cpp:105:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(pe, regex.pe, sizeof(pcre_extra)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRegex.cpp:115:19:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                  memcpy(pe->study_data, regex.pe->study_data, regex.study_size) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRegex.cpp:434:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char buffer[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:106:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:138:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:169:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:177:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "0x%08x 0x%08x %6d %12d %6d %6d", taskId, addr, options, ts, state); 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:201:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:209:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "0x%08x 0x%08x %6d %12d %6d %6d", taskId, addr, state, ts, timerId, type); 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:231:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:239:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "0x%08x 0x%08x %6d %12d", taskId, addr, size, ts);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:260:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRscTrace.cpp:268:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "0x%08x 0x%08x %12d", taskId, addr, ts);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:239:16:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
               memcpy(&mpData[mSize], szStr, N);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:359:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
         memcpy(&mpData[position],
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:720:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(newData, mpData, mSize);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/XmlContent.cpp:113:19:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                  char hexval[7];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/XmlContent.cpp:114:19:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                  sprintf(hexval, "&#x%02x;", *escapeChar.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/XmlContent.cpp:271:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buffer[20 + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:51:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (newstring, instring, newlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:78:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (newstring, copy . cstring, newlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:98:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (newstring, content, newlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:119:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (newstring, copy . c_str (), newlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:159:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy (new_string, cstring, length ());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:163:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy (new_string + length (), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:179:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy (cstring + length (), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:207:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy (new_string, cstring, 1 + length ());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:212:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy (new_string + length (), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:228:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy (cstring + length (), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:111:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char buf[ 32 ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:112:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf( buf, "&#x%02X;", (unsigned) ( c & 0xff ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:682:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			*i = atoi( s );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:726:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:727:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf( buf, "%d", val );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:734:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:735:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf( buf, "%f", val );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:953:15:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	FILE* file = fopen( value.c_str (), "r" );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:976:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf[BUF_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1011:18:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      FILE* fp = fopen( newfilename, "w" );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1166:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf [64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1167:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf (buf, "%d", _value);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1173:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf [256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1174:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf (buf, "%lf", _value);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1180:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	return atoi (value.c_str ());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxmlparser.cpp:572:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cArr[4] = { 0, 0, 0, 0 };
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxmlparser.cpp:606:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char cArr[4] = { 0, 0, 0, 0 };
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c:33:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char buffer[BUFFER_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c:227:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char input_buffer[BUFFER_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c:258:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
         ifd = open(&argv[i][3], O_RDONLY);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c:267:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
         ofd = open(&argv[i][3], O_WRONLY | O_CREAT, 0644);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:306:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char stringBuffer[2048];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:352:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(stringBuffer, "Time: start=%" FORMAT_INTLL "u, stop=%" FORMAT_INTLL "u\n", sdpTime->getStartTime(), sdpTime->getStopTime());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:361:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(stringBuffer, "TimeRepeat: interval=%d, duration=%d", timeRepeat->getRepeatInterval(), timeRepeat->getActiveDuration());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:368:16:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
               sprintf(stringBuffer, ", offset=%d", offset->getValue());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:382:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(stringBuffer, "TimeZone: adjustment time=%" FORMAT_INTLL "u, offset=%" FORMAT_INTLL "u\n", sdpTimeZone->getAdjustmentTime(), sdpTimeZone->getOffset());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:494:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char foundationId[15];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/Sdp.cpp:495:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(foundationId, "%d", (int)mFoundationIds.entries() + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCandidate.cpp:181:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char stringBuffer[512];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCandidatePair.cpp:184:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char stringBuffer[2048];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCodec.cpp:675:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        parameterValue = atoi(parameterValueString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCodec.cpp:910:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char stringBuffer[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCodecList.cpp:763:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char codecLabel[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpCodecList.cpp:764:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(codecLabel, "Codec[%d] cost=%d\n", index, codecFound->getCPUCost());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXsdpLib/src/sdp/SdpMediaLine.cpp:327:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char stringBuffer[8192];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/doc/developer/scores/timing_fixed.c:16:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
unsigned char table[256] = {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/examples/im/basicImClient.cpp:56:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                sipPort = atoi(argv[argIndex]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/examples/im/basicImClient.cpp:159:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buffer[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SdpBody.h:60:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char masterKey[SRTP_KEY_LENGTH+1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SipPimClient.h:73:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        open
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:130:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy((void*)szSmimeKeyDer, (void*)szKey, length);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:168:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szSrtpKey[SIPXTACK_MAX_SRTP_KEY_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:170:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szSmimeKeyDer[SIPXTACK_MAX_SMIME_KEY_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:173:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char dbLocation[256];         
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:175:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szMyCertNickname[32];                
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:177:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szCertDbPassword[SIPXTACK_MAX_PASSWORD_LENGTH];   
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:184:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy((void*)szSmimeKeyDer, (void*)ref.szSmimeKeyDer, ref.nSmimeKeyLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/resolv/resolv.h:119:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	*dnsrch[MAXDNSRCH+1];	/* components of domain to search */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/resolv/resolv.h:120:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	defdname[MAXDNAME];	/* default domain */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/resolv/resolv.h:124:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	unused[3];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/resolv/resolv.h:129:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	lookups[MAXDNSLUS];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:139:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#ifndef open
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:140:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#define open _open
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:181:9:  [2] (buffer) bcopy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
#ifndef bcopy
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:182:9:  [2] (buffer) bcopy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
#define bcopy(s, t, n) memcpy(t, s, n)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:182:24:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
#define bcopy(s, t, n) memcpy(t, s, n)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:186:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char uname[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/utilNT.h:97:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        const char *    mon[12];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/utilNT.h:98:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        const char *    month[12];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/utilNT.h:99:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        const char *    wday[7];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/utilNT.h:100:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        const char *    weekday[7];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp:215:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char numBuff[30];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp:216:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(numBuff, "%d", viaPortNum);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp:228:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char numBuf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp:229:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuf, "%d", cseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp:387:31:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                        ifd = open(&argv[i][3], O_RDONLY);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp:397:31:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                        ofd = open(&argv[i][3], O_BINARY | O_WRONLY | O_CREAT, 0644);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp:400:31:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                        ofd = open(&argv[i][3], O_WRONLY | O_CREAT, 0644);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp:417:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char inputBuffer[BUFFER_SIZE + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/CommandMsgProcessor.cpp:138:21:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                    char tag[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/CommandMsgProcessor.cpp:139:21:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                    sprintf(tag, "%d", tagNum);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/CommandMsgProcessor.cpp:195:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buffer[1025];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/CommandMsgProcessor.cpp:205:40:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                FILE* sipMessageFile = fopen(filename, "r");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/HistoryCommand.cpp:81:35:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                requestedLength = atoi(argv[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/HttpGetCommand.cpp:106:28:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                    port = atoi(portString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/RespondCommand.cpp:87:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                int statusCode = atoi(argv[1]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipLSendCommand.cpp:77:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buffer[1025];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipLSendCommand.cpp:95:24:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        int hostPort = atoi(argv[4]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipLSendCommand.cpp:97:32:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        FILE* sipMessageFile = fopen(argv[1], "r");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipSendCommand.cpp:80:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buffer[1025];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipSendCommand.cpp:92:42:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        if(argc == 3) transactionCount = atoi(argv[2]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipSendCommand.cpp:94:32:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        FILE* sipMessageFile = fopen(argv[1], "r");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/SipSendCommand.cpp:113:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char callIdBuffer[500];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/sipdrive.cpp:71:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            int msecs = (atoi(argv[1])) * 1000;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/sipdrive.cpp:190:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buffer[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpBody.cpp:596:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buffer[BOUNDARY_STRING_LENGTH + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpBody.cpp:599:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buffer, "%0*x",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpConnectionMap.cpp:161:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char t[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpConnectionMap.cpp:162:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(t, "%d", tempPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpConnectionMap.cpp:189:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char nameBuffer[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:569:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char tmpportbuf[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:570:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(tmpportbuf,"%d",httpPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:708:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char tmpportbuf[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:709:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(tmpportbuf,"%d",httpPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1066:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char         buffer[4096] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1280:38:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                     contentLength = atoi(value);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1285:38:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                     contentLength = atoi(value);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1652:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char escapedChar[4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1672:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(escapedChar, "%%%02X", (int)(unEscapedChar & 0xff));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1690:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char escapedChar[4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1703:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(escapedChar, "%%%02X", (int) (unEscapedChar & 0xff));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2268:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        length = atoi(contentLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2274:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char contentLengthString[HTTP_LONG_INT_CHARS];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2275:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(contentLengthString, "%d", contentLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2296:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char refreshLenString[HTTP_LONG_INT_CHARS];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2297:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(refreshLenString, "%d", seconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2424:40:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            int fieldBodyLengthValue = atoi(value ? value : "");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2427:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char bodyLengthString[40];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2428:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(bodyLengthString, "%d", bodyLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2455:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char bodyLengthString[40];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2457:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(bodyLengthString, " %d", pBody->getLength());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2459:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(bodyLengthString, " %d", bodyLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2525:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
           char codeBuffer[HTTP_LONG_INT_CHARS];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2526:12:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
           sprintf(codeBuffer, "%d", statusCode);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2540:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                int ret = atoi(codeString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3054:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char nonceCountBuffer[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3055:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(nonceCountBuffer, "%.8x", nonceCount);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3169:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char nonceCountBuffer[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3170:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(nonceCountBuffer, "%.8x", nonceCount);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:128:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char szTempBuf[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:129:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(szTempBuf, "%d", i) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:378:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char nonceSecret[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:417:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(nonceSecret, "%d", rand());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:421:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(nonceSecret, "%d",rand());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:714:24:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        int fileDesc = open(uriFileName.data(), O_BINARY | O_RDONLY, 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:745:33:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                fileDescToGet = open(indexFileName.data(), O_RDONLY, 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:757:37:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                    fileDescToGet = open(indexFileName.data(), O_RDONLY | O_BINARY, 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:866:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmpDateBuf[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:880:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char sizeBuffer[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:912:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(sizeBuffer, "%d", dirEntryStat.st_size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:918:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmpDateBuf, "  %02d/%02d/%d  %02d:%02d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:934:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char sizeBuffer[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:977:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(sizeBuffer, "%lu", fileInfo.nFileSizeLow);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:986:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char tmpDateBuf[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:987:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(tmpDateBuf, "  %02d/%02d/%d  %02d:%02d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1042:28:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    int bodyDumpFileDesc = open("/flash0/postbodyDump.aif", O_WRONLY | O_CREAT | O_TRUNC | O_BINARY,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1111:88:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                                                                        int fileDesc = open(tokenValue.data(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1130:121:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                                                                                        unsigned int checkSumFileDesc = open(tokenValue.data(), O_BINARY | O_RDONLY, 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1131:89:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                                                                        char checkSumBuffer[2001];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1152:89:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                                                                        char buffer[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1153:89:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                                                                                        sprintf(buffer, "%d", bytesWritten);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1166:89:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                                                                        char buffer[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1167:89:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                                                                                        sprintf(buffer, "<BR>Bytes available: %d\n<BR>Bytes needed: %d for file: ",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailAttachment.cpp:27:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(m_Base64, original.m_Base64, base64Len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailAttachment.cpp:55:14:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    if (file.open() == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailAttachment.cpp:147:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char rawByte[3];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailAttachment.cpp:150:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char encodedByte[4];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:99:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char receiveBuf[MAILBUFLEN];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:278:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp:32:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char buffer[64];                         /* input buffer */
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp:61:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char digest[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp:64:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char szTmp[MD5_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp:73:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(szTmp, "%02x", digest[i]);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp:139:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char PADDING[64] = {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp:236:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   unsigned char bits[8];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp:258:52:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static void MD5Transform (UINT4 state[4], unsigned char block[64])
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp:374:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy(output, input, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/ProvisioningClass.cpp:453:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char valueString[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/ProvisioningClass.cpp:579:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
   rValue = atoi(stringValue.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:296:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
      *port = atoi(portString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:331:29:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                    *port = atoi(portAttribute.data()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:441:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            int payload = atoi(payloadTypeString.data()) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:526:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         if(atoi(payloadString.data()) == payloadType)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:537:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            sampleRate = atoi(sampleRateString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:544:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            numChannels = atoi(numChannelString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:601:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         if(atoi(payloadString.data()) == payloadType)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:639:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char srtpKey[SRTP_KEY_LENGTH+1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:655:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            if(atoi(indexString.data()) == index)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:752:30:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            videoFramerate = atoi(rateString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:788:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            bandwidth = atoi(temp.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:859:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         *mediaPort = atoi(portString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:866:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            *mediaPortPairs = atoi(portPairString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:885:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         payloadTypes[typeCount] = atoi(payloadTypeString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:1013:33:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                        pTime = atoi(pTimeValueString);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:1209:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(&commonAudioParams, &remoteParams, sizeof(SdpSrtpParameters));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:1818:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char timeString[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:1819:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(timeString, "%d %d", 0, //OsDateTime::getSecsSinceEpoch(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:1892:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char cRtcpBuf[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:1893:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(cRtcpBuf, "rtcp:%d", rtcpAudioPorts[0]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:1900:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szTransportString[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:1903:13:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
            strcpy(szTransportString, "UDP");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2040:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char cRtcpBuf[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2041:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(cRtcpBuf, "rtcp:%d", rtcpVideoPorts[0]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2049:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szTransportString[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2052:13:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
            strcpy(szTransportString, "UDP");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2084:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char ct[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2085:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(ct, "CT:%d", totalBandwidth);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2432:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char timeString[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2433:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(timeString, "%d %d", 0, //OsDateTime::getSecsSinceEpoch(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2505:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&audioPayloadTypes, &payloadTypes, sizeof(int)*MAXIMUM_MEDIA_TYPES);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2506:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&receivedAudioSrtpParams, &receivedSrtpParams, sizeof(SdpSrtpParameters));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2514:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&videoPayloadTypes, &payloadTypes, sizeof(int)*MAXIMUM_MEDIA_TYPES);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2515:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(&receivedVideoSrtpParams, &receivedSrtpParams, sizeof(SdpSrtpParameters));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2592:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char cRtcpBuf[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2593:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(cRtcpBuf, "rtcp:%d", rtcpAudioPorts[0]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2701:21:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                    char cRtcpBuf[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2702:21:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                    sprintf(cRtcpBuf, "rtcp:%d", rtcpVideoPorts[0]) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2766:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char ct[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2767:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(ct, "CT:%d", matchingBandwidth);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2792:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char timeString[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2793:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(timeString, "%d %d", 0, //OsDateTime::getSecsSinceEpoch(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2895:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buffer[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2903:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(buffer, "/%d", numChannels);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2962:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char buffer[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2963:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(buffer, "%d ", payloadType);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2977:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buffer[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2978:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buffer, "%d", pTime);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2993:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buffer[64] ;    
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:2997:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buffer, "%d", candidateId) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3007:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buffer, "%" FORMAT_INTLL "u", qValue) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3014:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buffer, "%d", candidatePort) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3069:44:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                            rCandidateId = atoi(tmpCandidateId) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3071:46:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                            rCandidatePort = atoi(tmpCandidatePort) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3156:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char integerString[MAXIMUM_LONG_INT_CHARS];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3164:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(integerString, "%d", portNumber);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3168:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(integerString, "%d", portPairCount);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3181:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(integerString, "%c%d", SDP_SUBFIELD_SEPARATOR,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3259:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char integerString[MAXIMUM_LONG_INT_CHARS];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3262:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(integerString, "%lu", ntpStartTime);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3265:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(integerString, "%lu", ntpEndTime);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3274:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char integerString[MAXIMUM_LONG_INT_CHARS];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3285:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(integerString, "%d", sessionId);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3288:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(integerString, "%d", sessionVersion);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3398:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char thisHeader[2];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipClient.cpp:367:24:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                       char buff[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipClient.cpp:368:24:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                       sprintf(buff, "%d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipClient.cpp:822:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char portString[40];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipClient.cpp:825:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(portString, "%d", mRemoteHostPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipClient.cpp:838:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(portString, "%d", mRemoteViaPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipClient.cpp:845:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(portString, "%d", mRemoteReceivedPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipConfigServerAgent.cpp:185:19:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                  char tagBuffer[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipConfigServerAgent.cpp:186:19:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                  sprintf(tagBuffer, "%dasd", epochTime);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipContactDb.cpp:675:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char cFoo[512] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:852:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char numberString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:854:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numberString, "%p", this);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:886:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numberString, "%d", mInitialLocalCseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:889:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numberString, "%d", mInitialRemoteCseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:892:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numberString, "%d", mLastLocalCseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:895:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numberString, "%d", mLastRemoteCseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:898:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numberString, "%d", mDialogState);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:927:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char stateCode[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:928:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(stateCode, "%d", state);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogEvent.cpp:321:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
               mVersion = atoi(ucElement->Attribute("version"));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogEvent.cpp:366:55:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                  pDialog->setDuration((unsigned long)atoi(duration.data()));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogEvent.cpp:593:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char version[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogEvent.cpp:594:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char durationBuffer[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogEvent.cpp:603:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(version, "%d", mVersion);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogEvent.cpp:690:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(durationBuffer, "%d", duration);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:786:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            expires = atoi(expireStr.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:1573:21:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                    char szTempBuf[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:1574:21:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                    sprintf(szTempBuf, "%d", i+1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:1641:41:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                        char szTempBuf[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineMgr.cpp:1642:41:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                                        sprintf(szTempBuf, "%d", i+1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:787:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char warningCodeString[MAXIMUM_INTEGER_STRING_LENGTH + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:795:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(warningCodeString, "%d ", SIP_WARN_MEDIA_INCOMPAT_CODE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:814:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(warningCodeString, ":%d", port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:1231:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char integerString[255];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:1234:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(integerString,"\r\n");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:1246:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(integerString,"Messages-Waiting: yes\r\n");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:1251:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(integerString,"Messages-Waiting: no\r\n");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:1257:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(integerString,"Voice-Message: %d/%d\r\n",numNewMsgs,numOldMsgs);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:1263:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(integerString,"Fax-Message: %d/%d\r\n",numFaxNewMsgs,numFaxOldMsgs);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:1269:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(integerString,"Email-Message: %d/%d\r\n",numEmailNewMsgs,numEmailOldMsgs);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2075:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char portString[MAXIMUM_INTEGER_STRING_LENGTH + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2099:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(portString, ":%d", port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2297:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char portString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2298:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(portString, "%d", fromPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2311:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char numString[HTTP_LONG_INT_CHARS];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2313:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(numString, "%d", sequenceNumber);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2339:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char portString[MAXIMUM_INTEGER_STRING_LENGTH + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2378:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(portString, ":%d", port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2458:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char secondsString[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2459:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(secondsString, "%d", expiresInSeconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2468:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char secondsString[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2469:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(secondsString, "%d", minimumExpiresInSeconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2537:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        maxForwards = atoi(value);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2545:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2546:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buf, "%d", maxForwards);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2829:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char tagString[MAXIMUM_INTEGER_STRING_LENGTH];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2830:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(tagString, "%d", tagValue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:3071:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         *warningCode = atoi(warningField.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:3243:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         *receivedPort = atoi(receivedPortString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:3368:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char numBuf[MAXIMUM_INTEGER_STRING_LENGTH + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:3369:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(numBuf, &value[valueStart], numStringLen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:3371:28:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            *sequenceNum = atoi(numBuf);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:3601:33:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            *expiresInSeconds = atoi(fieldValue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:4143:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        *sessionExpiresSeconds = atoi(value);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:4473:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char diversionString[255];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:5136:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                  subFieldRetVal = atoi(subfieldValue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:5162:33:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
               subFieldRetVal = atoi(subfieldValue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNonceDb.cpp:107:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char dateString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNonceDb.cpp:111:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(dateString, "%ld", now);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNonceDb.cpp:142:29:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         int nonceCreated = atoi(timestamp.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp:291:46:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                               newMessages = atoi(numberString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp:298:47:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                                oldMessages = atoi(numberString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp:458:44:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                            iNewMessages = atoi(numberString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp:463:44:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                            iOldMessages = atoi(numberString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp:686:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        total = atoi(numberString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipNotifyStateTask.cpp:696:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            urgent = atoi(numberString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPimClient.cpp:341:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char num[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPimClient.cpp:344:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(num, "%d", epochTime);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPimClient.cpp:348:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(num, "%d", mCallIdIndex);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:81:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char numBuf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:82:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuf, "%p", mpApplicationData);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:85:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuf, "%p", mpStateCallback);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:88:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuf, "%d", mExpirationPeriodSeconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:91:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuf, "%ld", mPendingStartTime);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:94:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuf, "%ld", mExpiration);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:97:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuf, "%p", mpLastRequest);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:104:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuf, "%d", mFailedResponseCode);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:109:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuf, "%p", mpRefreshTimer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:831:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char numBuf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:832:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(numBuf, "%d", state);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:1144:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                expirationPeriod = atoi(contactExpiresParameter);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshManager.cpp:1199:40:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                    expirationPeriod = atoi(contactExpiresParameter);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:161:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char strCount[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:162:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf( strCount, "%d", mRestartCount );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1210:43:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                        serverRegPeriod = atoi(subfieldValue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1902:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char strCount[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1903:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(strCount, "%d", previousCount);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1912:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char randomString[60];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1913:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (randomString, "-%d", randomInt);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1927:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char randomString[60];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:1928:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf (randomString, "-%d", randomInt);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:2116:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char fromTagBuffer[24];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:2117:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(fromTagBuffer, "%0x%0x", mRandomNumGenerator.rand(), mRandomNumGenerator.rand());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:2149:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char cPort[32] ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipRefreshMgr.cpp:2150:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(cPort, "%d", port) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipResourceList.cpp:331:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char version[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipResourceList.cpp:344:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(version, "%d", mVersion);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSrvLookup.cpp:530:7:  [2] (buffer) bcopy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      bcopy((char*) list, (char*) new_list,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSrvLookup.cpp:780:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char answer[DNS_RESPONSE_SIZE];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:106:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char pointerString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:107:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(pointerString, "%p", mpApplicationData);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:110:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(pointerString, "%p", mpStateCallback);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:113:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(pointerString, "%p", mpNotifyCallback);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:536:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char stateNum[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:537:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(stateNum, "%d", stateValue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:912:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char callidCountString[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:916:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(callidCountString, "%ld%d", epochTime, mCallIdCount);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:944:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char numString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:947:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numString, "%d", mTagCount);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscribeClient.cpp:951:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numString, "%d", tagRandomness);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscriptionMgr.cpp:183:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char numBuffer[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscriptionMgr.cpp:186:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "%d", mEstablishedDialogCount);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscriptionMgr.cpp:477:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buffer[30];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscriptionMgr.cpp:563:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char buffer[30];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSubscriptionMgr.cpp:564:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(buffer, "active;expires=%ld",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTlsServer.cpp:187:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char szAdapterName[16];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:281:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[32];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:282:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(buf, "%d", transNum);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:926:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            port = atoi(sPort.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:2901:46:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                            expiresSeconds = atoi(expiresString.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4187:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char numBuffer[64];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4190:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%p", this);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4204:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%d", mSendToPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4219:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char srvRecordNums[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4224:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(srvRecordNums, "\n\t\t%d\t%d\t%d\t",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4232:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(srvRecordNums, "):%d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4249:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%d", mCseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4269:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "%p", mpRequest);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4285:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(numBuffer, "%d ", mpLastProvisionalResponse->getResponseStatusCode());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4288:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "%p", mpLastProvisionalResponse);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4304:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(numBuffer, "%d ", mpLastFinalResponse->getResponseStatusCode());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4307:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "%p", mpLastFinalResponse);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4321:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "%p", mpAck);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4335:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "%p", mpCancel);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4351:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(numBuffer, "%d", mpCancelResponse->getResponseStatusCode());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4354:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "%p", mpCancelResponse);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4359:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%p", mpParentTransaction);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4368:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "%d]: %p", childCount, childTransaction);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4378:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%ld", mTransactionCreateTime);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4382:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%ld", mTransactionStartTime);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4386:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%ld", mTimeStamp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4407:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%lf", mQvalue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4411:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%d", mExpires);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4415:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%d", mIsBusy);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4422:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(numBuffer, "%p ", mWaitingList);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4426:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "(%"PRIuPTR")", mWaitingList->entries());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4567:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char numBuffer[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4568:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuffer, "UKNOWN Transaction state: %d", state);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4628:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buffer[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4629:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buffer, "UKNOWN transaction relationship: %d",
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4649:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char cSeqString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipTransaction.cpp:4650:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(cSeqString, "%d", cSeq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:379:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szIpToStun[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:856:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szLocalIpForPortLookup[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:1009:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char fromTag[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:1010:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(fromTag, ";tag=%d%d", rand(), rand());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:1058:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char callIdPrefix[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:1059:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(callIdPrefix, "%ld%d-ping-", epochTime, rand());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:334:12:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
           strcpy(contact.cInterface, "(unknown)");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1072:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char buffer[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1073:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(buffer, "%d", timesSent);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1124:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char buff[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1125:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(buff, "%d", !portIsValid(port) ? 5060 : port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1139:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char buff[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1140:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(buff, "%d", !portIsValid(port) ? 5060 : port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1198:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char portString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1199:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(portString, "%d", !portIsValid(port) ? 5060 : port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1501:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char buff[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1502:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(buff, "%d", !portIsValid(port) ? 5060 : port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1577:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char buff[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:1578:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(buff, "%d", !portIsValid(port) ? 5060 : port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:3621:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char portString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:3622:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(portString, ":%d", port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:3904:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char portString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:3905:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(portString, ":%d", port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgent.cpp:4457:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char szSubjAltName[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUserAgentStateless.cpp:150:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char messageChars[200];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SmimeBody.cpp:1729:21:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                    char szSubjAltName[256];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/TapiMgr.cpp:72:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    static char szLastCallId[256] = { 0 };
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/TapiMgr.cpp:73:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    static char szLastRemoteAddress[256]  = { 0 };
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp:464:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char portNum[7];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp:465:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(portNum, ":%d", mHostPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp:781:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char portBuffer[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp:782:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
       sprintf(portBuffer, ":%d", mHostPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp:1419:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         mHostPort = atoi(portStr.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp:1604:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char portBuffer[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp:1605:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(portBuffer, ":%d", mHostPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp:1813:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char escapedChar[2];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcBody.cpp:93:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char temp[11];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcBody.cpp:94:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(temp, "%d", pValue->getValue());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcBody.cpp:105:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char temp[19];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp:413:44:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         params.insertAt(index, new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp:429:47:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            params.insertAt(index, new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp:462:55:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                  params.insertAt(index, new UtlBool((atoi(paramValue)==1)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp:594:79:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                  pMembers->insertKeyAndValue(new UtlString(name), new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp:611:82:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                     pMembers->insertKeyAndValue(new UtlString(name), new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp:645:90:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                           pMembers->insertKeyAndValue(new UtlString(name), new UtlBool((atoi(paramValue)==1)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp:762:41:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
               pList->insert(new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp:779:44:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                  pList->insert(new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcDispatch.cpp:813:52:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                        pList->insert(new UtlBool((atoi(paramValue)==1)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:144:50:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                                    mFaultCode = atoi(valueNode->FirstChild()->Value());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:150:50:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                                    mFaultCode = atoi(valueNode->FirstChild()->Value());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:270:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char temp[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:271:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
   sprintf(temp, "%d", mFaultCode);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:350:38:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
         mResponseValue = new UtlInt(atoi(paramValue));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:366:41:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
            mResponseValue = new UtlInt(atoi(paramValue));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:399:49:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                  mResponseValue = new UtlBool((atoi(paramValue)==1));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:529:78:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                  members->insertKeyAndValue(new UtlString(name), new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:546:81:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                     members->insertKeyAndValue(new UtlString(name), new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:580:89:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                           members->insertKeyAndValue(new UtlString(name), new UtlBool((atoi(paramValue)==1)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:700:41:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
               array->insert(new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:712:41:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
               array->insert(new UtlInt(atoi(paramValue)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/XmlRpcResponse.cpp:736:43:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
               array->insert(new UtlBool((atoi(paramValue)==1)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/pk12wrapper.cpp:193:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(pwItem->data, p0, pwItem->len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/ns_name.c:299:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy(dstp, srcp, n);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/ns_name.c:426:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy(dstp, srcp, n + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:97:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy((void *)&nrd->address, (void *)&ord->address,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:155:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy((void *)nrd->null.anything, (void *)ord->null.anything, dlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:165:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy((void *)&nrd->wks.address, (void *)&ord->wks.address,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:168:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy((void *)&nrd->wks.bitmap, (void *)&ord->wks.bitmap,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:357:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy((void *)&nrd->string, (void *)&ord->string, dlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:372:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy((void *)&nrd->string, (void *)&ord->string, dlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:406:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy((void *)&(new->header), (void *)&(resp ->header), sizeof(HEADER));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:31:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char     retbuf[40];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:164:25:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        default: (void) sprintf(retbuf, "%d", wks); return(retbuf);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:185:25:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        default: (void) sprintf(retbuf, "%d", proto); return(retbuf);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:262:23:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                (void)sprintf(retbuf, "%d", type);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:278:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
        if ((i = atoi(str)) != 0 )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:375:23:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                (void)sprintf(retbuf, "%d", class);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_info.c:389:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
                strcpy(retbuf, "0 secs");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:225:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char DNSServers[6][MAXIPLEN];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:230:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[MAXDNAME];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:241:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        static char szLocalIp[32] = "";
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:376:19:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        if ((fp = fopen(_PATH_RESCONF, "r")) != NULL) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:573:29:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                        i = atoi(cp + sizeof("ndots:") - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_mkquery.c:218:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy(cp, data, datalen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:73:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char    name[MAXDNAME];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:205:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy((void *)&rd->address, (void *)*cpp, sizeof(struct in_addr));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:247:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy((void *)rd->null.anything, (void *)*cpp, dlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:253:17:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                memcpy((void *)&rd->wks.address, (void *)*cpp, sizeof(struct in_addr));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:259:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy((void *)rd->wks.bitmap, (void *)*cpp, rd->wks.maplength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:405:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy((void *)rd->string, (void *)*cpp, dlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:420:25:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
                        memcpy((void *)rd->string, (void *)*cpp, dlen);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:456:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy((void *)&(resp->header), (void *)msg, sizeof(HEADER));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:362:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char nbuf[MAXDNAME];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:411:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[BUFSIZ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:412:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    static char abuf[MAXDNAME];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:419:28:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	if (file == NULL || (fp = fopen(file, "r")) == NULL)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_send.c:333:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tname[MAXDNAME+1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_send.c:385:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tname[MAXDNAME+1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_send.c:605:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char junk[PACKETSZ];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpBodyTest.cpp:85:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char boundary_string[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpBodyTest.cpp:92:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char part2[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:143:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char msg[2048];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:151:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(msg,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:165:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char encodedData[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:167:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char decodedData[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:168:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char msg[2048];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:227:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char msg[2048];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:258:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char msg[2048];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:39:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact1.cInterface, "eth0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:40:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact1.cIpAddress, "9.9.9.1");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:50:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact2.cInterface, "eth0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:51:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact2.cIpAddress, "9.9.9.1");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:61:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact3.cInterface, "eth0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:62:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact3.cIpAddress, "9.9.9.1");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:73:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact4.cInterface, "eth0");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:74:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact4.cIpAddress, "9.9.9.2");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:85:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact5.cInterface, "eth1");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipContactDbTest.cpp:86:9:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
        strcpy(contact5.cIpAddress, "10.10.10.5");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipDialogMonitorTest.cpp:95:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char header[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipDialogMonitorTest.cpp:100:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
         sprintf(header,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:283:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char message[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:476:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char buffer[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:477:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:491:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char buffer[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:492:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:640:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char message[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:743:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char message[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:828:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char message[1000];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:844:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char number[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:845:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(number, "Test %d", i);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:970:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char agent[128], text[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:984:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char agent_expected[128];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:988:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf(&agent_expected[strlen(agent_expected)], ":%d", port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1150:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char to_URI[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1230:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char to_URI[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1315:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char to_URI[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:78:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char buffer[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipRefreshManagerTest.cpp:157:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char portText[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipRefreshManagerTest.cpp:158:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(portText, "%d", UNIT_TEST_SIP_PORT);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:76:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char result_string[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:93:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char config_file[100];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:95:11:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      f = fopen(config_file, "w");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:111:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char b[10];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:112:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(b, "%d", NAMED_PORT);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:721:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char printBuf[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:725:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(printBuf, "timeOut: %d retries: %d", timeOut, retries);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:734:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char result_string[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSubscribeServerTest.cpp:132:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char portString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSubscribeServerTest.cpp:133:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
       sprintf(portString, ":%d", UNIT_TEST_SIP_PORT);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSubscriptionClientTest.cpp:156:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char portText[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSubscriptionClientTest.cpp:157:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(portText, "%d", UNIT_TEST_SIP_PORT);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipUserAgentTest.cpp:53:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       char pidString[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipUserAgentTest.cpp:60:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
       if (procFile.open(OsFile::READ_ONLY) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipUserAgentTest.cpp:80:41:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                           numThreads = atoi(ptr+8);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:151:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:177:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:193:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:207:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:225:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:249:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:267:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
         char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:283:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:297:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:310:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:325:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:340:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:359:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:378:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:400:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:578:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:591:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:615:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1016:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1061:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1101:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1134:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1166:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1391:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1402:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1413:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1425:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char msg[1024];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1461:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char msg[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/UrlTest.cpp:1499:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char msg[80];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:274:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                char numBuff[30];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:275:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf(numBuff, "%d", viaPortNum);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:287:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char numBuf[20];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:288:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(numBuf, "%d", cseq);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:428:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
         ifd = open(&argv[i][3], O_RDONLY);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:439:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
         ofd = open(&argv[i][3], O_BINARY | O_WRONLY | O_CREAT, 0644);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:442:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
         ofd = open(&argv[i][3], O_WRONLY | O_CREAT, 0644);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:484:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
   char inputBuffer[BUFFER_SIZE + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:485:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(dbLocation, ref.dbLocation, sizeof(dbLocation) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:486:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szMyCertNickname, ref.szMyCertNickname, sizeof(szMyCertNickname) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:487:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szCertDbPassword, ref.szCertDbPassword, sizeof(szCertDbPassword) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:634:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(cInterface, ref.cInterface, sizeof(cInterface));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:635:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(cIpAddress, ref.cIpAddress, sizeof(cIpAddress));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:642:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(cCustomTransportName, ref.cCustomTransportName, 32);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:643:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(cCustomRouteID, ref.cCustomRouteID, sizeof(cCustomRouteID));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:657:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(cInterface, ref.cInterface, sizeof(cInterface));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:658:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(cIpAddress, ref.cIpAddress, sizeof(cIpAddress));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:665:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(cCustomTransportName, ref.cCustomTransportName, sizeof(cCustomTransportName));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapi.h:666:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(cCustomRouteID, ref.cCustomRouteID, sizeof(cCustomRouteID));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:325:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szTransport, ref.szTransport, MAX_TRANSPORT_NAME - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:327:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szLocalIp, ref.szLocalIp, sizeof(szLocalIp)-1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:329:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(cRoutingId, ref.cRoutingId, sizeof(cRoutingId)-1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/include/tapi/sipXtapiInternal.h:342:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen(pTransport->szTransport) > 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CallManager.cpp:2974:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(url && strlen(url) > 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:127:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(forwardOnNoAnswerUrl != NULL && strlen(forwardOnNoAnswerUrl) > 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:1695:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(contacts[nActualContacts].cIpAddress, ipAddress.data(), 32) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:1705:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(contacts[nActualContacts].cIpAddress, ipAddress.data(), 32) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:1715:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(contacts[nActualContacts].cIpAddress, ipAddress.data(), 32) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:1725:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(contacts[nActualContacts].cIpAddress, ipAddress.data(), 32) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:1735:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(contacts[nActualContacts].cIpAddress, ipAddress.data(), 32) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:4256:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(address, mLocalAddress.data(), len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/CpPeerCall.cpp:4273:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(terminal, mLocalTerminalId.data(), len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipConnection.cpp:6859:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(tapiCodec.audioCodec.cName, audioCodecName.data(), SIPXTAPI_CODEC_NAMELEN-1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/cp/SipConnection.cpp:6860:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(tapiCodec.videoCodec.cName, videoCodecName.data(), SIPXTAPI_CODEC_NAMELEN-1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsButtonInfo.cpp:44:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           mpButtonName = new char[strlen(name) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsButtonInfo.cpp:56:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           mpButtonName = new char[strlen(rPsButtonInfo.mpButtonName) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsButtonInfo.cpp:92:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           mpButtonName = new char[strlen(rhs.mpButtonName) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsButtonTask.cpp:165:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int len = strlen(buttonName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampInfo.cpp:37:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      mpLampName = new char[strlen(pName) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampInfo.cpp:49:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           mpLampName = new char[strlen(rPsLampInfo.mpLampName) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampInfo.cpp:86:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           mpLampName = new char[strlen(rhs.mpLampName) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsLampInfo.cpp:129:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        mpLampName = new char[strlen(pLampName) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:55:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(rPsMsg.mStringParam1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:58:12:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
           strncpy(mStringParam1, rPsMsg.mStringParam1, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:62:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(rPsMsg.mStringParam2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:65:12:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
           strncpy(mStringParam2, rPsMsg.mStringParam2, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:102:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(rhs.mStringParam1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:105:12:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
           strncpy(mStringParam1, rhs.mStringParam1, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:109:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(rhs.mStringParam2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:112:12:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
           strncpy(mStringParam2, rhs.mStringParam2, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:141:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(param);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:143:12:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
           strncpy(mStringParam1, param, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:153:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(param);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ps/PsMsg.cpp:156:12:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
           strncpy(mStringParam2, param, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddress.cpp:727:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy (rpName, mAddress.data(), bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddressForwarding.cpp:142:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(address, mDestinationUrl.data(), bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtAddressForwarding.cpp:165:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(address, mCallerUrl.data(), bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtCall.cpp:1557:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(callId, mCallId.data(), bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:91:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(rName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:187:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                        int bytes = strlen(mpName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponent.cpp:191:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy (rpName, mpName, bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponentGroup.cpp:440:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                        int bytes = strlen(mDescription.data());
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtComponentGroup.cpp:444:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy (pDescription, mDescription.data(), bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:505:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(pName, arg.data(), l);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnection.cpp:563:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(pName, arg.data(), l);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnectionEvent.cpp:96:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(address);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtConnectionEvent.cpp:99:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(mAddressName, address, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:55:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:57:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(mpInfo, name, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:84:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(rPtPhoneButton.mpInfo);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:89:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(mpInfo, rPtPhoneButton.mpInfo, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:125:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(rhs.mpInfo);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:130:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(mpInfo, rhs.mpInfo, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:197:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(buttonInfo);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:211:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(buttonInfo);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:216:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(mpInfo, buttonInfo, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:246:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                        int bytes = strlen(mpInfo);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtPhoneButton.cpp:250:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy (rpInfo, mpInfo, bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1677:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                        int bytes = strlen(mTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1680:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy (rpName, mTerminalName, bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1720:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminal.cpp:1726:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(mTerminalName, name, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnectionEvent.cpp:120:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(address);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnectionEvent.cpp:123:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(mAddress, address, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnectionEvent.cpp:134:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(terminal);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalConnectionEvent.cpp:137:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(mTerminalName, terminal, len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalEvent.cpp:46:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(rPtTerminalEvent.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalEvent.cpp:82:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(rhs.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalEvent.cpp:119:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(terminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:34:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(pTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:49:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(rPtTerminalListener.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:80:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           int len = strlen(rhs.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:98:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:124:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                        int bytes = strlen(mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/ptapi/PtTerminalListener.cpp:128:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy (name, mpTerminalName, bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoAddressAdaptor.cpp:43:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        mName = new char[strlen(phoneNumber) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoClientTask.cpp:364:34:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                iRead = pSocket->read(&pBuf[iTotalRead], iLength-iTotalRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventListener.cpp:35:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(pTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventListener.cpp:49:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(rTaoEventListener.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventListener.cpp:85:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(rhs.mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventListener.cpp:108:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                        int bytes = strlen(mpTerminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoEventListener.cpp:112:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy ((char *)rpTerminalName, mpTerminalName, bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoListenerClient.cpp:1291:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(myEv.name, name, 16);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoProviderListener.cpp:39:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int len = strlen(terminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoString.cpp:57:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        patLen = strlen(delimiter);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoString.cpp:59:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   strLen = strlen(str) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoString.cpp:67:10:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
         strncpy(mStrArray[mCnt], &str[pos], length) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoString.cpp:87:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
      strncpy(mStrArray[mCnt], &str[pos], strLen-pos) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTerminalConnectionListener.cpp:40:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int len = strlen(terminalName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTransportAgent.cpp:113:39:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                bytesRead = mpSocket->read((char*) &cookie, sizeof(unsigned long)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tao/TaoTransportAgent.cpp:283:34:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                iRead = pSocket->read(&pBuf[iTotalRead], iLength-iTotalRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:1392:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen(pSecurity->getSrtpKey()) == 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:1784:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szId, callId.data(), iMaxLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:1810:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szId, lineId.data(), iMaxLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:1858:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szId, remoteId.data(), iMaxLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:1883:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szId, contactAddress.data(), iMaxLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:1997:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(szUri, uri.data(), iMaxLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:2042:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(szContact, contact.toString().data(), iMaxLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:2085:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(szAgent, userAgent.data(), iMaxLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:3883:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen(pSecurity->getSrtpKey()) == 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:4988:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy(pInst->speakerSettings[type].device, checkDevice, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:5534:29:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                            strncpy(pInst->micSetting.device, szDevice, sizeof(pInst->micSetting.device)-1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:5595:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy(pInst->speakerSettings[RINGER].device, szDevice,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:5662:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy(pInst->speakerSettings[SPEAKER].device, szDevice, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:6044:21:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                    strncpy(szBuffer, pData->lineURI->toString().data(), nBuffer) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:6048:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    nActual = strlen(szBuffer) + 1 ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:6052:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    nActual = strlen(pData->lineURI->toString().data()) + 1;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:6823:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        nLen = (strlen(SIPXTAPI_VERSION_STRING)-8) +
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:6824:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
               strlen(SIPXTAPI_VERSION) + 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:6825:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
               strlen(SIPXTAPI_BUILDNUMBER) + 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:6826:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
               strlen(SIPXTAPI_BUILDDATE) + 4;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:7205:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(pCodec->cName, codecName, SIPXTAPI_CODEC_NAMELEN-1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:7337:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy(pTemp, pDevice->data(),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:7382:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(szCaptureDevice, captureDevice.data(), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:7489:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(pCodec->cName, codecName, SIPXTAPI_CODEC_NAMELEN-1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:7964:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(spoofedContact.cIpAddress, szSipContactAddress, 27);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8008:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szContactIp, contactAddress.data(), nContactIpLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8313:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(pInst->dbLocation, szDbLocation, sizeof(pInst->dbLocation));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8314:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(pInst->myCertNickname, szMyCertNickname, sizeof(pInst->myCertNickname));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8315:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(pInst->dbPassword, szDbPassword, sizeof(pInst->dbPassword));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8402:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(pInst->szAcceptLanguage, szLanguage, 16);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8425:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(pInst->szLocationHeader, szHeader, 255);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8487:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(pData->szTransport, szTransport, MAX_TRANSPORT_NAME - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8488:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(pData->szLocalIp, szLocalIp, 31);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8492:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(pData->cRoutingId, szLocalRoutingId, sizeof(pData->cRoutingId)-1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8773:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (szUrl && strlen(szUrl))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8806:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (szUrl && strlen(szUrl))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8815:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szDisplayName, temp, nDisplayName) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapi.cpp:8883:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(szValue, value.data(), nValue) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:2343:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(securityAttrib.dbLocation, dbLocation, sizeof(securityAttrib.dbLocation));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:2349:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(securityAttrib.szCertDbPassword, dbPassword, sizeof(securityAttrib.szCertDbPassword));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/tapi/sipXtapiInternal.cpp:2355:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(securityAttrib.szMyCertNickname, szMyCertNickname, sizeof(securityAttrib.szMyCertNickname));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:215:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        iSize += strlen(array[i]) + 2 ;  // "\t\n"
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:222:9:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
        strcat(szRC, "\t") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/EventRecorder.cpp:226:13:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
            strcat(szRC, "\n") ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/TestStunServerTask.cpp:70:58:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            nReadLength = ((OsSocket*) mpPrimarySocket)->read(cReadBuffer, sizeof(cReadBuffer), &readAddress, &readPort) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:126:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:193:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:267:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:335:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:390:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:438:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:484:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:530:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:591:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:646:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:696:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/callbacks.cpp:747:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:79:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT(strlen(cBuf) > 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:83:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT(strlen(cBuf) == 3);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:180:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT(strlen(cBuf) > 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:184:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT(strlen(cBuf) == 3);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:231:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT(strlen(cBuf) > 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestCall.cpp:235:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT(strlen(cBuf) == 3);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestConfig.cpp:820:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (strlen((const char*) pUserData))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:153:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if (cBuf[strlen(cBuf)-1] == '>')
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:155:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            cBuf[strlen(cBuf)-1] = '\0';
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:162:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT_EQUAL(strlen(cBuf)+1, nActual) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:195:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT_EQUAL(strlen(cBuf)+1, nActual) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXcallLib/src/test/tapi/sipXtapiTestLine.cpp:199:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT_EQUAL(nActual, strlen(szURI) + 1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/examples/mstream/mstream.cpp:817:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    while((pairsNumber=pcre_exec(f,NULL,str,strlen(str),shift,PCRE_NOTEMPTY,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpPhoneMediaInterface.cpp:298:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if (szLocalAddress && strlen(szLocalAddress))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpPhoneMediaInterface.cpp:778:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(candidateIp) > 0) && 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpPhoneMediaInterface.cpp:817:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(candidateIp) > 0) && 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpPhoneMediaInterface.cpp:856:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(candidateIp) > 0) && 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpPhoneMediaInterface.cpp:895:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(candidateIp) > 0) && 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpTopologyGraphInterface.cpp:454:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if (szLocalAddress && strlen(szLocalAddress))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpTopologyGraphInterface.cpp:1217:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(candidateIp) > 0) && 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpTopologyGraphInterface.cpp:1256:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(candidateIp) > 0) && 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpTopologyGraphInterface.cpp:1297:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(candidateIp) > 0) && 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaAdapterLib/sipXmediaMediaProcessing/src/CpTopologyGraphInterface.cpp:1336:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(candidateIp) > 0) && 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamBufferDataSource.h:70:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual OsStatus read(char *szBuffer, int iLength, int& iLengthRead) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamDataSource.h:82:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual OsStatus read(char *szBuffer, int iLength, int& iLengthRead) = 0;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamFileDataSource.h:68:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual OsStatus read(char *szBuffer, int iLength, int& iLengthRead) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/include/mp/StreamHttpDataSource.h:88:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual OsStatus read(char *szBuffer, int iLength, int& iLengthRead) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/FilterBank.cpp:1071:4:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/FilterBank.cpp:1145:5:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/FilterBank.cpp:1525:5:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/FilterBank.cpp:1809:10:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
         getchar();        // DEBUG!!!!!!!
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/HandsetFilterBank.cpp:369:4:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/HandsetFilterBank.cpp:434:5:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/HandsetFilterBank.cpp:696:5:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/HandsetFilterBank.cpp:946:10:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
         getchar();        // DEBUG!!!!!!!
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/HandsetFilterBank.cpp:1204:4:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioFileDecompress.cpp:99:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   return read;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioFileDecompress.cpp:120:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   return read;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:162:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    file.write(tmpbuf, strlen(tmpbuf),bytesWritten);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:172:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    file.write(tmpbuf, strlen(tmpbuf),bytesWritten);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:180:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    file.write(tmpbuf,strlen(tmpbuf),bytesWritten);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:211:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    file.write(tmpbuf,strlen(tmpbuf),bytesWritten);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:288:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                if (reader.read((char *)chunkId,4,bytesRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:293:36:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                        if (reader.read((char *)&filesize,sizeof(long),bytesRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:297:40:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                            if (reader.read((char *)chunkId,4,bytesRead) == OS_SUCCESS) //now read WAVE marker
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:301:48:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                                    if (reader.read((char *)chunkId,4,bytesRead) == OS_SUCCESS) //now read fmt marker
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:307:56:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                                            if (reader.read((char *)&fmtlength,sizeof(long),bytesRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:312:60:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                                                    reader.read(fmtbuffer,fmtlength,bytesRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:316:60:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                                                if (reader.read((char *)chunkId,4,bytesRead) == OS_SUCCESS) //now read fmt marker
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:326:68:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                                                        if (reader.read((char *)&datalength,sizeof(long),bytesRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:333:76:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                                                                if (reader.read((char *)charBuffer,datalength,bytesRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioUtils.cpp:355:64:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                                                        reader.read((char *)chunkId,4,bytesRead); 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioWaveFileRead.cpp:90:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   mStream.read((char *)buffer, numBytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioWaveFileRead.cpp:345:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      mStream.read(reinterpret_cast<char *>(mpformatData),size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpAudioWaveFileRead.cpp:358:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      mStream.read(text,size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpMisc.cpp:177:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        l = sipx_min(ABSOLUTE_MAX_LOG_MSG_LEN, strlen(buf));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpOss.cpp:560:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      int bytesJustRead = read(mfdDevice, &buffer[bytesReadSoFar],
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MpidAndroid.cpp:69:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   write(fd, header, strlen(header));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:512:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   bytesWritten += write(handle, tmpbuf, (unsigned)strlen(tmpbuf));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:518:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   bytesWritten += write(handle, tmpbuf, (unsigned)strlen(tmpbuf));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:524:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   bytesWritten += write(handle, tmpbuf, (unsigned)strlen(tmpbuf));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/MprRecorder.cpp:540:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   bytesWritten += write(handle, tmpbuf, (unsigned)strlen(tmpbuf));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/NetInTask.cpp:221:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      if (pSock->read(junk, MAX_RTP_BYTES) <= 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/NetInTask.cpp:255:30:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            nRead = pRxpSkt->read(ib->getDataWritePtr(), ib->getMaximumPacketSize()
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/NetInTask.cpp:288:30:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            nRead = pRxpSkt->read(buffer, UDP_MTU, &fromIP, &fromPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/NetInTask.cpp:500:43:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                readBytes = mpReadSocket->read((char *) &msg, NET_TASK_MAX_MSG_LEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamBufferDataSource.cpp:85:34:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
OsStatus StreamBufferDataSource::read(char *szBuffer, int iLength, int& iLengthRead)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamFileDataSource.cpp:118:32:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
OsStatus StreamFileDataSource::read(char *szBuffer, int iLength, int& iLengthRead)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamFileDataSource.cpp:130:20:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      rc = mpFile->read(szBuffer, iLength, temp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamFileDataSource.cpp:150:23:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
         rc = mpFile->read(szBuffer, iLength, (unsigned long&) iLengthRead) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamHttpDataSource.cpp:176:32:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
OsStatus StreamHttpDataSource::read(char *szBuffer, int iLength, int& iLengthRead)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamRAWFormatDecoder.cpp:167:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      while ((pSrc->read(pEventSamples, iLength, iRead) == OS_SUCCESS) && !mbEnd)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:151:55:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      if (pSrc->peek((char*) &id, sizeof(WAVChunkID), read) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:232:33:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                retval = (pSrc->read((char *)InBuffer, iRead, iRead) == OS_SUCCESS);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:244:33:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                retval = (pSrc->read((char *)OutBuffer, iRead, iRead) == OS_SUCCESS);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:253:33:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                retval = (pSrc->read((char *)OutBuffer, iRead, iRead) == OS_SUCCESS);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:376:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      while (!mbEnd && pDataSource->read((char*) Header, 4, iRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:387:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
             pDataSource->read((char*) Header + 4, 123, iRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:401:30:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            if (pDataSource->read((char*) &blockSize, sizeof(blockSize), iRead) != OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:416:30:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            if (pDataSource->read((char*) &blockSize, sizeof(blockSize), iRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:424:34:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                if (pDataSource->read((char*) &formatChunkInfo, sizeof(formatChunkInfo), iRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:464:30:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            if (pDataSource->read((char*) &blockSize, sizeof(blockSize), iRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:475:30:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            if (pDataSource->read((char*) &blockSize, sizeof(blockSize), iRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/StreamWAVFormatDecoder.cpp:482:43:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    retval = pDataSource->read(tmpbuf, 16000, iRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgilbc/PlgIlbc.c:85:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   res += strlen(paramName); //Skip name of param world
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgopus/plgopus.c:141:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    codecContext->mFmtp = malloc(strlen(fmtp) + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/codecs/plgspeex/PlgSpeex.c:78:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   res += strlen(paramName); //Skip name of param world
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp:163:2:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp:222:2:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp:270:2:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp:309:20:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			if (i%16 == 15) getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp:311:3:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		getchar(); 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp:378:2:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp:410:3:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp:422:2:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dft.cpp:476:2:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	getchar();
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp:282:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      justRead = read(soundCard, &readBufferSamples[recorded], BUFLEN - (recorded * sizeof(MpAudioSample)));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/dmaTaskPosix.cpp:720:4:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   read(CoreAudio_socket[0], buffer, size);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/mpG711.cpp:57:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   return read;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/mpG711.cpp:103:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   return read;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/mpau.cpp:40:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   mStream.read(reinterpret_cast<char *>(buffer),length);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/mp/mpau.cpp:57:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   mStream.read(header,24);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/ByeReport.cpp:245:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)m_uchReason, (char *)puchReason, m_ulReasonLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/ByeReport.cpp:252:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulReasonLength = strlen((char *)puchReason);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:283:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulNameLength = strlen((char *)puchName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:290:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulEmailLength = strlen((char *)puchEmail);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:297:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulPhoneLength = strlen((char *)puchPhone);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:304:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulLocationLength = strlen((char *)puchLocation);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:311:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulAppNameLength = strlen((char *)puchAppName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:318:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulNotesLength = strlen((char *)puchNotes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:325:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulPrivateLength = strlen((char *)puchPrivate);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:451:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)m_uchCName, (char *)puchCName, m_ulCNameLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:462:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulCNameLength = strlen((char *)puchCName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:535:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)m_uchName, (char *)puchName, m_ulNameLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:546:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulNameLength = strlen((char *)puchName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:625:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)m_uchEmail, (char *)puchEmail, m_ulEmailLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:636:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulEmailLength = strlen((char *)puchEmail);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:712:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)m_uchPhone, (char *)puchPhone, m_ulPhoneLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:723:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulPhoneLength = strlen((char *)puchPhone);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:798:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)m_uchAppName, (char *)puchAppName, m_ulAppNameLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:809:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulAppNameLength = strlen((char *)puchAppName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:887:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)m_uchLocation,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:899:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulLocationLength = strlen((char *)puchLocation);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:975:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)m_uchNotes, (char *)puchNotes, m_ulNotesLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:986:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulNotesLength = strlen((char *)puchNotes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1065:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)m_uchPrivate, (char *)puchPrivate, m_ulPrivateLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1076:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        m_ulPrivateLength = strlen((char *)puchPrivate);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1335:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    m_ulCNameLength = strlen((char *)m_uchCName);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1621:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy((char *)puchPayloadBuffer, (char *)uchFieldBuffer, ulEntryLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1686:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)puchPayloadBuffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1733:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy((char *)puchPayloadBuffer, (char *)uchFieldBuffer, ulEntryLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXmediaLib/src/rtcp/SourceDescription.cpp:1796:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char *)puchPayloadBuffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsConnectionSocket.h:64:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsConnectionSocket.h:73:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsConnectionSocket.h:85:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength, long waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsDatagramSocket.h:85:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsFileBase.h:175:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual OsStatus read(void *pBuf, unsigned long bufLen, unsigned long &rBytesRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatConnectionSocket.h:87:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    virtual int read(char* buffer, int bufferLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatConnectionSocket.h:92:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    virtual int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatConnectionSocket.h:98:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    virtual int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatConnectionSocket.h:104:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    virtual int read(char* buffer, int bufferLength, long waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatDatagramSocket.h:141:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    virtual int read(char* buffer, int bufferLength) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatDatagramSocket.h:146:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    virtual int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatDatagramSocket.h:152:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    virtual int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsNatDatagramSocket.h:158:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    virtual int read(char* buffer, int bufferLength, long waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSSLConnectionSocket.h:81:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSSLConnectionSocket.h:90:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSSLConnectionSocket.h:102:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength, long waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocket.h:142:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocket.h:151:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocket.h:163:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocket.h:175:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength, long waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:95:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:98:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:102:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:106:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength, long waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:218:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:220:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return mCryptoProxy.read(buffer, bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:223:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:226:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return mCryptoProxy.read(buffer, bufferLength, fromAddress, fromPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:229:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:232:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return mCryptoProxy.read(buffer, bufferLength, ipAddress, port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:235:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:238:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return mCryptoProxy.read(buffer, bufferLength, waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:256:33:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return OsMulticastSocket::read(buffer, bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:262:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return OsSocket::read(buffer, bufferLength, fromAddress, fromPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:268:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return OsSocket::read(buffer, bufferLength, ipAddress, port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:274:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return OsSocket::read(buffer, bufferLength, waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:324:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:326:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return mCryptoProxy.read(buffer, bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:329:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:332:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return mCryptoProxy.read(buffer, bufferLength, fromAddress, fromPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:335:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:338:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return mCryptoProxy.read(buffer, bufferLength, ipAddress, port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:341:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   int read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:344:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return mCryptoProxy.read(buffer, bufferLength, waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:368:35:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return OsNatDatagramSocket::read(buffer, bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:374:35:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return OsNatDatagramSocket::read(buffer, bufferLength, fromAddress, fromPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:380:35:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return OsNatDatagramSocket::read(buffer, bufferLength, ipAddress, port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsSocketCrypto.h:386:35:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      return OsNatDatagramSocket::read(buffer, bufferLength, waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTLSConnectionSocket.h:87:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTLSConnectionSocket.h:96:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/OsTLSConnectionSocket.h:108:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   virtual int read(char* buffer, int bufferLength, long waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/os/WinCE/WinCEFixups.h:239:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int				read( int fd, void *buffer, unsigned int count );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/include/xmlparser/tinyxml.h:281:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy( _value, p, *length );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:196:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            p = fileLine + strlen(fileLine);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:772:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        p = buff + strlen(buff);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:780:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    size_t size = n * strlen(DB_LINE_FORMAT);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:839:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    buffLen = strlen(buff);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:926:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        retval = osfile.read(buff, buffLen, bytesRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:1058:10:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
         strncpy(configLine, config.data(), size) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConfigDb.cpp:1068:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         if (strlen(configLine) == 0) continue;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:169:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(! serverName || strlen(serverName) == 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:304:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsConnectionSocket::read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:307:31:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    int bytesRead = OsSocket::read(buffer, bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:311:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsConnectionSocket::read(char* buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:319:31:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    int bytesRead = OsSocket::read(buffer, bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:330:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsConnectionSocket::read(char* buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsConnectionSocket.cpp:335:31:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    int bytesRead = OsSocket::read(buffer, bufferLength, waitMilliseconds);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDatagramSocket.cpp:355:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen(ipAddress) == 0 ||
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDatagramSocket.cpp:422:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            strlen(ipAddress) == 0 ||
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDatagramSocket.cpp:499:23:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsDatagramSocket::read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDatagramSocket.cpp:510:33:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
          bytesRead = OsSocket::read(buffer, bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDatagramSocket.cpp:516:34:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
           bytesRead = OsSocket::read(buffer, bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsDatagramSocket.cpp:522:31:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        bytesRead = OsSocket::read(buffer, bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:128:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        while(fileToRead.read(buffer, READ_BUFFER_SIZE, bytesRead) == OS_SUCCESS &&
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:575:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    if (read(buf,CopyBufLen,BytesRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:634:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        if (read(buf,1,BytesRead) == OS_SUCCESS)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:674:22:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
OsStatus OsFileBase::read(void* buf, unsigned long buflen, unsigned long& bytesRead)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsFileBase.cpp:725:19:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        retstat = read(buf, 1, bytesRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:182:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsNatConnectionSocket::read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:188:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    iRC = OsSocket::read(buffer, bufferLength, &receivedIp, &iReceivedPort) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:194:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsNatConnectionSocket::read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:199:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    iRC = OsSocket::read(buffer, bufferLength, ipAddress, port) ;       
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:206:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsNatConnectionSocket::read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:213:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    iRC = read(buffer, bufferLength, &receivedIp, &iReceivedPort) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:227:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsNatConnectionSocket::read(char* buffer, int bufferLength, long waitMilliseconds)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:239:29:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            iRC = OsSocket::read(buffer, bufferLength, &receivedIp, &iReceivedPort) ;            
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatConnectionSocket.cpp:373:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    read(cBuf, sizeof(cBuf), 500) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:107:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsNatDatagramSocket::read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:117:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        iRC = OsSocket::read(buffer, bufferLength, &receivedIp, &iReceivedPort) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:134:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsNatDatagramSocket::read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:145:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        iRC = OsSocket::read(buffer, bufferLength, &receivedIp, &iReceivedPort) ;       
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:174:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsNatDatagramSocket::read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:181:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    iRC = read(buffer, bufferLength, &receivedIp, &iReceivedPort) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:192:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsNatDatagramSocket::read(char* buffer, int bufferLength, long waitMilliseconds)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:204:29:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            iRC = OsSocket::read(buffer, bufferLength, &receivedIp, &iReceivedPort) ;            
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:311:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    read(cBuf, sizeof(cBuf), 100) ;                
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:362:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    read(cBuf, sizeof(cBuf), 100) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsNatDatagramSocket.cpp:409:10:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
         read(cBuf, sizeof(cBuf), 50);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:104:19:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                  strncpy(drive, spec, 2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:151:25:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
                        strncat(path, p, dot_length);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsPathBase.cpp:156:25:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
                        strncat(pname, p, dot_length);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSLConnectionSocket.cpp:176:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSSLConnectionSocket::read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSLConnectionSocket.cpp:198:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSSLConnectionSocket::read(char* buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSSLConnectionSocket.cpp:230:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSSLConnectionSocket::read(char* buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:84:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if ( len < strlen(un.domainname)+1 ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:235:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSocket::read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:282:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSocket::read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:360:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSocket::read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:385:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   bytesRead = OsSocket::read(buffer, bufferLength, &fromSockAddress, fromPort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:395:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSocket::read(char* buffer, int bufferLength, long waitMilliseconds)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:400:30:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        numBytes = OsSocket::read(buffer, bufferLength);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:454:16:  [1] (obsolete) usleep:
  This C routine is considered obsolete (as opposed to the shell command by
  the same name). The interaction of this function with SIGALRM and other
  timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
  unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
               usleep(100);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:651:16:  [1] (obsolete) usleep:
  This C routine is considered obsolete (as opposed to the shell command by
  the same name). The interaction of this function with SIGALRM and other
  timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
  unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
               usleep(100);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:858:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if (strlen(adapter_id) == 0 || 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:1207:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if((dot4 == NULL) && strlen(dot3) > 1)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocket.cpp:1340:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    return (strlen(resolvParams.domainName) != 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocketCrypto.cpp:275:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSocketCryptoProxy::read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocketCrypto.cpp:293:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSocketCryptoProxy::read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocketCrypto.cpp:312:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSocketCryptoProxy::read(char* buffer, int bufferLength,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSocketCrypto.cpp:331:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsSocketCryptoProxy::read(char* buffer, int bufferLength, long waitMilliseconds)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:470:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         if (mpSockets[i]->write(pEntry, strlen(pEntry), 0) <= 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:747:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if ((portStart != NULL) && (strlen(portStart) > 1))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsSysLogTask.cpp:834:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                           strlen(mpRingBuffer[iIndex]), ulBytesWritten) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLS.cpp:283:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    char* szPass = (char*)PR_Malloc(strlen((char*)arg) + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLS.cpp:284:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    memset(szPass, 0, strlen((char*)arg)+1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLS.cpp:285:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(szPass, (char*)arg, strlen((char*)arg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLS.cpp:285:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    strncpy(szPass, (char*)arg, strlen((char*)arg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSClientConnectionSocket.cpp:129:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy((char*)szPwd, mCertPassword.data(), mCertPassword.length()+1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSConnectionSocket.cpp:198:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsTLSConnectionSocket::read(char* buffer, int bufferLength)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSConnectionSocket.cpp:218:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsTLSConnectionSocket::read(char* buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSConnectionSocket.cpp:248:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int OsTLSConnectionSocket::read(char* buffer,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSServerConnectionSocket.cpp:148:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy((char*)szPwd, mCertPassword.data(), mCertPassword.length()+1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/OsTLSServerSocket.cpp:128:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy((char*)szPwd, certPassword.data(), certPassword.length()+1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:528:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (szUsername && strlen(szUsername))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:530:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(mUsername, szUsername, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:537:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (szPassword && strlen(szPassword))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:539:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(mPassword, szPassword, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:546:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (szRealm && strlen(szRealm))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:548:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(mRealm, szRealm, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:555:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (szNonce && strlen(szNonce))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:557:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(mNonce, szNonce, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:566:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(mError.szReasonPhrase, szReason, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:590:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (szServer && strlen(szServer))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:592:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(mServer, szServer, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:728:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szUsername, mUsername, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:738:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szPassword, mPassword, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:748:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szRealm, mRealm, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:758:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szNone, mNonce, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:778:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szReason, mError.szReasonPhrase, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:816:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szServer, mServer, STUN_MAX_STRING_LENGTH) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1175:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        nActualLength = strlen(szString) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1193:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        nActualLength = strlen(szString) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1214:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    size_t nReason = strlen(pError->szReasonPhrase) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1439:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if (mbLegacyMode && strlen(pString))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunMessage.cpp:1442:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            char* szEnd = pString + (strlen(pString) - 1) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:151:43:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    int length = pSocket->read(cMsgReceive, sizeof(cMsgReceive)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/StunUtils.cpp:232:43:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    int length = pSocket->read(cMsgReceive, sizeof(cMsgReceive)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:83:5:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int	read( int fd, void *buffer, unsigned int count )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:113:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		iRet = MultiByteToWideChar( CP_ACP, 0, pFileName, strlen( pFileName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:252:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		iRet = MultiByteToWideChar( CP_ACP, 0, pName, strlen( pName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:278:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		iRet = MultiByteToWideChar( CP_ACP, 0, pName, strlen( pName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:497:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		iRet = MultiByteToWideChar( CP_ACP, 0, pIn, strlen( pIn ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:533:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		iRet = MultiByteToWideChar( CP_ACP, 0, pIn, strlen( pIn ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:630:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if( iErrNo  ||  strlen( cErrMsg ) == 0 )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:660:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       iRet = MultiByteToWideChar( CP_ACP, 0, lpFileName, strlen( lpFileName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:666:61:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       iRet2 = MultiByteToWideChar( CP_ACP, 0, lpFileName2, strlen( lpFileName2 ), wBuf2, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:682:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       iRet = MultiByteToWideChar( CP_ACP, 0, lpFileName, strlen( lpFileName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:718:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		iRet = MultiByteToWideChar( CP_ACP, 0, filename, strlen( filename ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:855:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        iRet = MultiByteToWideChar( CP_ACP, 0, lpName, strlen( lpName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:957:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		iRet = MultiByteToWideChar( CP_ACP, 0, lpFileName, strlen( lpFileName ), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:981:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    iRet = MultiByteToWideChar( CP_ACP, 0, lpFileName, strlen( lpFileName ), wBuf, MAX_PATH );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:1006:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                   strlen( lpFindFileData->cFileName ), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:1030:60:  [1] (buffer) wcslen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        ffDataW.cFileName, wcslen(ffDataW.cFileName),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:1077:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                   strlen( lpFileName ), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/WinCE/WinCEFixups.cpp:1092:60:  [1] (buffer) wcslen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        ffDataW.cFileName, wcslen(ffDataW.cFileName),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:241:67:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if (memicmp(adapters[loop].MacAddress,mac_address,strlen(mac_address)) == 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:297:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                                if (strlen(MacAddressStr))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/WindowsAdapterInfo.cpp:298:57:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
                                                        strcat(MacAddressStr,"-");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/Wnt/getWindowsDNSServers.cpp:374:14:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
             strncpy(regDNSServers[retRegDNSServerCount++],ptr,MAXIPLEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/linux/OsProcessIteratorLinux.cpp:121:22:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            procFile.read((void *)buffer,(unsigned long)len,bytesRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/ipcperf.c:191:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if(!pServerName || strlen(pServerName) == 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/main.cpp:29:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int len = strlen(msg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/main.cpp:61:35:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        bytesRead = serverClient->read(recvBuf, RECV_BUF_LEN - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/main.cpp:72:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        len = strlen(resp);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/os/test/sockets/main.cpp:76:29:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        bytesRead = client->read(recvBuf, RECV_BUF_LEN - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:134:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            stat = rfile.read(rbuff, readsize, bytesread);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsFileTest.cpp:143:22:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        stat = rfile.read(rbuff, 1, zeroread);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp:67:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int len = (int)strlen(msg);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp:122:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int len = (int)strlen(msg) + 1; // +1 for NULL
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp:128:39:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        int bytesRead = serverClient->read(recvBuf, sizeof(recvBuf) - 1, socketTimeout);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp:134:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        len = (int)strlen(resp) + 1; // +1 for NULL
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp:140:29:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        bytesRead = client->read(recvBuf, sizeof(recvBuf) - 1, socketTimeout);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp:180:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int len = strlen(msg) + 1; // +1 for NULL
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsSocketTest.cpp:186:43:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        int bytesRead = reader->OsSocket::read(recvBuf, sizeof(recvBuf) - 1, 100);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/os/OsTestUtilities.cpp:143:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            stat = rfile.read(rbuff, readsize, bytesread);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestClass.cpp:119:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(mPriorTestPointFileName, filename, 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxportunit/SipxPortUnitTestEnvironment.cpp:456:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int nameLength = strlen(stringToCopy);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestMonitor.cpp:53:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (strlen(TestUtilities::getKnownBugMessage()) != 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/sipxunit/TestUtilities.cpp:107:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(m_bugMessage, err.what(), MAX_BUG_MESSAGE_LEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlCryptoTest.cpp:101:20:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      int len = s2.read((char*)buffer, 1000, &str, &port );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlCryptoTest.cpp:111:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      len = s4.read((char*)buffer, 1000, &str, &port );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp:595:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
              strlen(a.data()), (size_t) 2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp:629:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
              strlen(a.data()), (size_t) 2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp:633:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
              strlen(a.data()), (size_t) 2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp:702:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            size_t len_baseString = strlen(commonTestSet[i].input) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp:705:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                size_t len_stringToAppend = strlen(commonTestSet[j].input) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp:791:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         size_t appendLength = strlen(stringToAppend) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp:932:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            size_t len_baseString = strlen(commonTestSet[i].input) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp:1120:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        const size_t lenLongString = strlen(longAlphaString) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_ConstructiveManipulators.cpp:1121:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        const size_t lenSplChars = strlen(splCharString) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_DestructiveManipulators.cpp:409:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        size_t tmpStrTrailLen = strlen( tmpStringForTrailing.data() );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_DestructiveManipulators.cpp:415:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        size_t tmpStrLeadLen = strlen( tmpStringForLeading.data() );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_DestructiveManipulators.cpp:423:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        size_t tmpStrBothLen = strlen( expectedForBoth ) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_DestructiveManipulators.cpp:479:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            size_t datalength = strlen( testData[i].input );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_DestructiveManipulators.cpp:481:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            size_t utlTestCharLen = strlen( testString.data() );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_DestructiveManipulators.cpp:527:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
               size_t expStrlen = strlen( expectedValue );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/test/utl/UtlStringTest_DestructiveManipulators.cpp:528:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
               size_t actStrlen = strlen( returnString.data() );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlLongLongInt.cpp:114:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    int numDigits = strlen(longLongString);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlNameValueTokenizer.cpp:34:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      length = strlen(multiLineText);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlNameValueTokenizer.cpp:91:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      int numSeparators = strlen(subFieldSeparators);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRegex.cpp:170:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  subjectLen  = (len >= 0) ? len : strlen(subject);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlRegex.cpp:191:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   subjectLen  = (len >= 0) ? len : strlen(subject);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:207:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        append(szStr, strlen(szStr));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:333:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      size_t len = strlen(source);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:449:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    return replace(pos, N, replaceStr, strlen(replaceStr));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:468:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        (strlen(replaceStr) >= L) &&
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:949:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        size_t searchStrSize = strlen(searchStr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlString.cpp:978:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        size_t searchStrSize = strlen(searchStr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlTokenizer.cpp:70:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    size_t len = strlen(m_tokens);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/utl/UtlTokenizer.cpp:100:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    size_t delimLen = strlen(delim);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:49:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    newlen = strlen (instring) + 1;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:95:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    newlen = strlen (content) + 1;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:194:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    new_size = length () + strlen (suffix) + 1;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:214:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                strlen (suffix) + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinystr.cpp:230:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                strlen (suffix) + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:115:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			outString->append( buf, (int)strlen( buf ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1004:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   char* newfilename = new char[strlen(filename) + strlen(newsuffix) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxml.cpp:1004:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   char* newfilename = new char[strlen(filename) + strlen(newsuffix) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxmlparser.cpp:502:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			assert( strlen( entity[i].str ) == entity[i].strLength );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxmlparser.cpp:615:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return p + strlen( endTag );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/src/xmlparser/tinyxmlparser.cpp:1304:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	p += strlen( startTag );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c:278:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         if (strlen(argv[i]) > 2)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c:281:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            width = strtol(argv[i] + strlen("-f"), &endptr, 10);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c:282:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if (endptr != argv[i] + strlen(argv[i]))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c:304:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   i = read(ifd, input_buffer, BUFFER_SIZE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXportLib/syslogviewer/main.c:312:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      i = read(ifd, input_buffer, BUFFER_SIZE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/HttpMessage.h:289:9:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    int read(OsSocket* inSocket,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:121:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szSrtpKey, szKey, length);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:185:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(dbLocation, ref.dbLocation, sizeof(dbLocation) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:186:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szMyCertNickname, ref.szMyCertNickname, sizeof(szMyCertNickname) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/net/SmimeBody.h:187:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(szCertDbPassword, ref.szCertDbPassword, sizeof(szCertDbPassword) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:89:24:  [1] (buffer) getc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
#define getc_socket(f) getc(f)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:135:9:  [1] (obsolete) usleep:
  This C routine is considered obsolete (as opposed to the shell command by
  the same name). The interaction of this function with SIGALRM and other
  timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
  unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
#ifndef usleep
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/include/resparse/wnt/sysdep.h:136:9:  [1] (obsolete) usleep:
  This C routine is considered obsolete (as opposed to the shell command by
  the same name). The interaction of this function with SIGALRM and other
  timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
  unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
#define usleep(s) _sleep((s)/1000)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siplog2siptrace/main.cpp:425:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        i = read(ifd, inputBuffer, BUFFER_SIZE);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/CommandProcessor.cpp:212:62:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                (*argv)[argIndex] = new char[strlen(arg.data()) + 1];
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/siptest/src/siptest/HttpGetCommand.cpp:127:29:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                getResponse.read(&getSocket);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpBody.cpp:78:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         boundaryIndex += strlen(MULTIPART_BOUNDARY_PARAMETER);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpBody.cpp:106:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(bytes && length < 0) length = strlen(bytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpConnection.cpp:95:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            int bytesRead = request.read(mpRequestSocket);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:119:4:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
   read(inSocket, bufferSize);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:329:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         byteCount = strlen(messageBytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:838:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            bytesRead = read(httpSocket);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:977:33:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    bytesRead = read(httpAuthSocket);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1025:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
         iRead = inSocket->read(&ch, 1, &remoteHost, &remotePort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1036:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                  iRead = inSocket->read(&ch, 1, &remoteHost, &remotePort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1082:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
         iRead = inSocket->read(buffer, iMaxRead, &remoteHost, &remotePort);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1107:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int HttpMessage::read(OsSocket* inSocket, int bufferSize,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1195:32:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
         bytesRead = inSocket->read(buffer, bufferSize,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1392:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
             (bytesRead = inSocket->read(buffer, bufferSize)) > 0);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:1699:17:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
                strcpy(escapedChar, "+");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2505:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                partEnd = partStart + strlen(partStart);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2968:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(user && strlen(user))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2984:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(nonce && strlen(nonce))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:2992:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(uri && strlen(uri))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3000:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(response && strlen(response))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3008:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(algorithm && strlen(algorithm))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3016:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(cnonce && strlen(cnonce) &&
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3017:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        ((qop && strlen(qop)) ||
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3026:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(opaque && strlen(opaque))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3034:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if(qop && strlen(qop))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpMessage.cpp:3052:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       qop && strlen(qop))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpRequestContext.cpp:383:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   int queryStringLength = strlen(queryString);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:292:29:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    request.read(requestSocket);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:308:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            request.read(requestSocket);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:447:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            response->setContentLength(strlen(text));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:526:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            response->setContentLength(strlen(text));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:832:39:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                while((numBytesRead = read(fileDescToGet,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1136:117:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                                                                                                checkSumBytesRead = read(checkSumFileDesc, checkSumBuffer, 2000);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1340:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            response->setContentLength(strlen(text));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1356:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    response->setContentLength(strlen(text));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1388:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    response->setContentLength(strlen(text));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/HttpServer.cpp:1486:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    response->setContentLength(strlen(htmlBodyText));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailAttachment.cpp:23:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    int base64Len = strlen(original.m_Base64)+1;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailAttachment.cpp:74:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                if ( file.read(buffer, fileSize,bytesRead) == OS_SUCCESS )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:110:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    s.read(receiveBuf,MAILBUFLEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:118:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    s.read(receiveBuf,MAILBUFLEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:129:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    s.read(receiveBuf,MAILBUFLEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:144:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        s.read(receiveBuf,MAILBUFLEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:157:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        s.read(receiveBuf,MAILBUFLEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:170:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        s.read(receiveBuf,MAILBUFLEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:181:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    s.read(receiveBuf,MAILBUFLEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/MailMessage.cpp:194:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    s.read(receiveBuf,MAILBUFLEN);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NameValuePair.cpp:107:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen(newValue);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NameValuePair.cpp:109:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if(valueString && len > (int) strlen(valueString))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/NetMd5Codec.cpp:62:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   unsigned int len = strlen (text);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:80:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         bodyLength = strlen(bodyBytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:142:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      bodyLength = strlen(bodyBytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:220:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(emailAddress && strlen(emailAddress) > 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:224:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(phoneNumber && strlen(phoneNumber) > 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3314:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    + strlen(value)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SdpBody.cpp:3393:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   for ( lookingFor = 0, headersToTry = strlen(headers);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipClient.cpp:277:42:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                    bytesRead = message->read(clientSocket, readBufferSize, &buffer);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipContactDb.cpp:230:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (transportName && strlen(transportName)) 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipContactDb.cpp:619:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(newContact->cCustomTransportName, szTransport, sizeof(newContact->cCustomTransportName));                
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipContactDb.cpp:622:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(newContact->cCustomRouteID, szRoutingID, sizeof(newContact->cCustomRouteID));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialog.cpp:464:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    reversedHandle.capacity(strlen(dialogHandle) + 2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipDialogEvent.cpp:280:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      bodyLength = strlen(bodyBytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipLineList.cpp:308:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if ((realm != NULL) && strlen(realm)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:863:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   setBody(new HttpBody(explanation, strlen(explanation), CONTENT_TYPE_TEXT_PLAIN));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2076:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   bool bCustomRouteId = (customRouteId && strlen(customRouteId)) ;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2079:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(protocol && strlen(protocol))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2234:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if (tagValue  && strlen(tagValue))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2344:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(userLabel && strlen(userLabel))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2368:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(!strstr(address, "@") && user && strlen(user))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2382:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(protocol && strlen(protocol) > 0)
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2387:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(userLabel && strlen(userLabel))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2392:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if(tag && strlen(tag))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2504:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   size_t sizeNeeded = 3 /* warning code size */ + strlen(hostname) + strlen(text) + 3 /* blanks & null */;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:2504:71:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   size_t sizeNeeded = 3 /* warning code size */ + strlen(hostname) + strlen(text) + 3 /* blanks & null */;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:3089:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         viaField.remove(0, posSubField + strlen(SIP_MULTIFIELD_SEPARATOR));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:3905:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (routeField && strlen(routeField))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipMessage.cpp:5214:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    int viaFieldLength = strlen(viaField);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPimClient.cpp:121:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                          strlen(messageText),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPimClient.cpp:138:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if (NULL != subject && 0 != strlen(subject))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipPresenceEvent.cpp:142:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      bodyLength = strlen(bodyBytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipResourceList.cpp:153:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      bodyLength = strlen(bodyBytes);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSrvLookup.cpp:599:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   char* lookup_name = (char*) malloc(strlen(service) + strlen(proto_string) +
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSrvLookup.cpp:599:57:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   char* lookup_name = (char*) malloc(strlen(service) + strlen(proto_string) +
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipSrvLookup.cpp:600:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                      strlen(domain) + 5);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:431:17:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
                strcpy(szIpToStun, "");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:551:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(szLocalIp) == 0)    )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:587:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(szLocalIp) == 0)    )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:623:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(szLocalIp) == 0)    )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:659:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(szLocalIp) == 0)    )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:696:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(szLocalIp) == 0)    )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:754:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(szLocalIp) == 0)    )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SipUdpServer.cpp:797:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                (strlen(szLocalIp) == 0)    )
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SmimeBody.cpp:505:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    passwordItem.len = strlen(pkcs12Password);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SmimeBody.cpp:1256:17:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                strncpy(szSubjAltName, (const char*)ext_value->data, sipx_min(ext_value->len, length));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SmimeBody.cpp:1554:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(prPass, szCertDbPassword, 256);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SmimeBody.cpp:1611:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(szDbPassword, certDbPassword, 255);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SmimeBody.cpp:1636:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    slotPwd.len = strlen(certDbPassword);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SmimeBody.cpp:1842:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        secuPwd.len = strlen(pkcs12Password);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/SmimeBody.cpp:1847:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        slotPwd.len = strlen(certDbPassword);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/TapiMgr.cpp:92:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szLastCallId, szCallId, sizeof(szLastCallId));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/TapiMgr.cpp:93:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szLastRemoteAddress, szCallId, sizeof(szLastRemoteAddress));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/net/Url.cpp:403:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   if (displayName && strlen(displayName))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:42:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if ((newq->qname = (char *)malloc(strlen(oldq->qname)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:76:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if ((newr->name = (char *)malloc(strlen(oldr->name)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:111:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->string = (char *)malloc(strlen(ord->string)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:119:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->soa.mname = (char *)malloc(strlen(ord->soa.mname)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:124:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->soa.rname = (char *)malloc(strlen(ord->soa.rname)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:141:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->string = (char *)malloc(strlen(ord->string)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:173:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->string = (char *)malloc(strlen(ord->string)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:181:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->hinfo.cpu = (char *)malloc(strlen(ord->hinfo.cpu)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:186:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->hinfo.os = (char *)malloc(strlen(ord->hinfo.os)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:195:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->minfo.rmailbx = (char *)malloc(strlen(ord->minfo.rmailbx)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:200:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->minfo.emailbx = (char *)malloc(strlen(ord->minfo.emailbx)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:209:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->mx.exchange = (char *)malloc(strlen(ord->mx.exchange)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:218:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->srv.target = (char *)malloc(strlen(ord->srv.target)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:231:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->naptr.flags = (char *)malloc(strlen(ord->naptr.flags)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:236:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->naptr.services = (char *)malloc(strlen(ord->naptr.services)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:241:57:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->naptr.regexp = (char *)malloc(strlen(ord->naptr.regexp)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:246:62:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->naptr.replacement = (char *)malloc(strlen(ord->naptr.replacement)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:291:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->afsdb.hostname = (char *)malloc(strlen(ord->afsdb.hostname)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:302:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->rp.mbox_dname = (char *)malloc(strlen(ord->rp.mbox_dname)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:307:57:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->rp.txt_dname = (char *)malloc(strlen(ord->rp.txt_dname)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:316:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->string = (char *)malloc(strlen(ord->string)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:324:57:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->isdn.address = (char *)malloc(strlen(ord->isdn.address)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:329:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->isdn.sa = (char *)malloc(strlen(ord->isdn.sa)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_copy.c:338:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if ((nrd->rt.int_host = (char *)malloc(strlen(ord->rt.int_host)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:251:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szLocalIp, szBuff, 32);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:260:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(szLocalIp, localIp, 32);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:338:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		(void)strncpy(_sip_res.defdname, cp, sizeof(_sip_res.defdname) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:391:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		    strncpy(_sip_res.defdname, cp, sizeof(_sip_res.defdname) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_init.c:407:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		    strncpy(_sip_res.defdname, cp, sizeof(_sip_res.defdname) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_naptr.c:199:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
      strncpy(&string[used_size], &original[0], len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_naptr.c:240:16:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
               strncpy(&string[used_size], &original[match[n].rm_so], len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_naptr.c:284:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      int len = strlen(original) - match[0].rm_eo;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_naptr.c:291:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
      strncpy(&string[used_size], &original[match[0].rm_eo], len);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:85:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if ((ptr=(char *)malloc(strlen(name)+1)) == NULL ) {
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:117:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
        strncpy(ptr, *cpp, i);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_parse.c:273:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                        cpp -= (strlen(rd->hinfo.cpu) +1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:271:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
             *domain && strlen(*domain) && !done;
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:380:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        n = strlen(name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:387:13:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
            strncpy(nbuf, name, n);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:392:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        n = strlen(name);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:393:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        d = strlen(domain);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/resparse/res_query.c:437:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy(abuf, cp1, sizeof(abuf) - 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpBodyTest.cpp:87:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         HttpBody bodyPart2(boundary_string, strlen(boundary_string),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpBodyTest.cpp:121:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      res.replace(location, strlen(boundary_string),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpMessageTest.cpp:45:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int expectedLen = strlen(hdr);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpMessageTest.cpp:133:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        HttpBody *httpBody = new HttpBody(body, strlen(body));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/HttpMessageTest.cpp:140:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        CPPUNIT_ASSERT_EQUAL_MESSAGE("incorrect body len", (int)strlen(body),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:147:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            decodedSize = NetBase64Codec::decodedSize(strlen(tests[test].output),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:185:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    strlen(tests[test].output), tests[test].output,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:189:61:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                   (   (encodedSize == (int)strlen(tests[test].output))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:242:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    strlen(tests[test].output), tests[test].output,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:246:61:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                   (   (encoded.length() == strlen(tests[test].output))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:272:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    strlen(tests[test].output), tests[test].output,
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/NetBase64CodecTest.cpp:276:61:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                   (   (encoded.length() == strlen(tests[test].output))
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SdpBodyTest.cpp:92:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        SdpBody embeddedBody(embeddedSdp.data(), strlen(sdp));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipDialogMonitorTest.cpp:109:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                 strlen(body));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipDialogTest.cpp:75:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage subRequest(subscribeRequestString, strlen(subscribeRequestString));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipDialogTest.cpp:76:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage subResponse(subscribeResponseString, strlen(subscribeResponseString));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:97:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(simpleMessage, strlen(simpleMessage));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:138:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg( SimpleMessage, strlen( SimpleMessage ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:181:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg( SimpleMessage, strlen( SimpleMessage ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:221:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg( SimpleMessage, strlen( SimpleMessage ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:317:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipMessage(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:407:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg( MultipartBodyMessage, strlen( MultipartBodyMessage ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:469:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMessage1(message1, strlen(message1));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:484:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMessage2(message2, strlen(message2));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:524:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg( SubscribeMessage, strlen( SubscribeMessage ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:558:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsgWithId( SubscribeMessageWithId, strlen( SubscribeMessageWithId ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:593:68:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsgWithParams( SubscribeMessageWithParams, strlen( SubscribeMessageWithParams ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:662:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipMessage(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:765:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipMessage(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:839:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipMessage(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:930:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:988:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            sprintf(&agent_expected[strlen(agent_expected)], ":%d", port);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1368:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1392:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1417:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1441:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1465:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1494:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1526:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1559:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1588:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1618:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1643:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            SipMessage sipmsg(rawmsg, strlen(rawmsg));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipMessageTest.cpp:1679:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg( CompactMessage, strlen( CompactMessage ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:100:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:135:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:187:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:221:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:274:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:322:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:367:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:420:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:478:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipProxyMessageTest.cpp:543:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         SipMessage testMsg(message, strlen(message));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:84:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      HttpBody *body = new HttpBody(content, strlen(content), "text/plain");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:166:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         int bodyLength = strlen(content);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:250:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            int bodyLength = strlen(default_content);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:286:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            int bodyLength = strlen(content_1b);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:293:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            int bodyLength = strlen(content_2);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:389:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         int bodyLength = strlen(content);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:476:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         int bodyLength = strlen(content);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipPublishContentMgrTest.cpp:547:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         int bodyLength = strlen(content);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:635:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            sprintf(result_string + strlen(result_string),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:645:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         CPPUNIT_ASSERT(strlen(result_string) < sizeof (result_string));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:744:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         sprintf(result_string + strlen(result_string),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSrvLookupTest.cpp:773:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         sprintf(result_string + strlen(result_string),
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSubscribeServerTest.cpp:224:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                           strlen(mwiStateString), 
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipSubscribeServerTest.cpp:271:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       CPPUNIT_ASSERT(notifyBodySize == (int)strlen(mwiStateString));
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipUserAgentTest.cpp:67:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
               procFile.read((void *)buffer,(unsigned long)len,bytesRead);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipUserAgentTest.cpp:125:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      SipMessage testMsg( SimpleMessage, strlen( SimpleMessage ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/src/test/net/SipUserAgentTest.cpp:210:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      SipMessage testMsg( SimpleMessage, strlen( SimpleMessage ) );
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:453:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         char* t = (char*) malloc(strlen(argv[i]) - 9 + 1 + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:454:10:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
         strcpy(t, "\"");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:465:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
         char* t = (char*) malloc(strlen(argv[i]) - 8 + 1 + 1);
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:466:10:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
         strcpy(t, "\"");
data/sipxtapi-3.3.0~test18+dfsg.1/sipXtackLib/syslog2siptrace/main.cpp:491:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      i = read(ifd, inputBuffer, BUFFER_SIZE);

ANALYSIS SUMMARY:

Hits = 3315
Lines analyzed = 648084 in approximately 23.91 seconds (27111 lines/second)
Physical Source Lines of Code (SLOC) = 449984
Hits@level = [0] 1248 [1] 768 [2] 1895 [3]  52 [4] 593 [5]   7
Hits@level+ = [0+] 4563 [1+] 3315 [2+] 2547 [3+] 652 [4+] 600 [5+]   7
Hits/KSLOC@level+ = [0+] 10.1404 [1+] 7.36693 [2+] 5.6602 [3+] 1.44894 [4+] 1.33338 [5+] 0.0155561
Symlinks skipped = 8 (--allowlink overrides but see doc for security issue)
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.