Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/snmpkit-0.9/acconfig.h
Examining data/snmpkit-0.9/src/ber.C
Examining data/snmpkit-0.9/src/beroid.C
Examining data/snmpkit-0.9/src/berseq.C
Examining data/snmpkit-0.9/src/oidseq.C
Examining data/snmpkit-0.9/src/snmpsock.C
Examining data/snmpkit-0.9/src/snmpkit.h
Examining data/snmpkit-0.9/src/oidseq.h
Examining data/snmpkit-0.9/src/snmpsock.h
Examining data/snmpkit-0.9/src/session.C
Examining data/snmpkit-0.9/src/snmptest1.C
Examining data/snmpkit-0.9/src/structfill.C
Examining data/snmpkit-0.9/src/snmptest3.C
Examining data/snmpkit-0.9/src/snmpkit_interface.C
Examining data/snmpkit-0.9/src/ber.h
Examining data/snmpkit-0.9/src/snmptest2.C
FINAL RESULTS:
data/snmpkit-0.9/src/ber.C:44:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[sizeof(unsigned long)];
data/snmpkit-0.9/src/ber.C:46:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,&nlen,sizeof(unsigned long));
data/snmpkit-0.9/src/ber.C:70:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(reinterpret_cast<unsigned char*>(&asize)+sizeof(unsigned long)
data/snmpkit-0.9/src/ber.C:101:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[30];
data/snmpkit-0.9/src/ber.C:107:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[30];
data/snmpkit-0.9/src/ber.C:116:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(reinterpret_cast<unsigned char*>(&val)+sizeof(long)-str[1],
data/snmpkit-0.9/src/ber.C:128:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(reinterpret_cast<unsigned char*>(&val)
data/snmpkit-0.9/src/ber.C:135:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[sizeof(long)];
data/snmpkit-0.9/src/ber.C:138:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,&valu,sizeof(long));
data/snmpkit-0.9/src/ber.C:153:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[sizeof(unsigned long)];
data/snmpkit-0.9/src/ber.C:156:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,&valu,sizeof(unsigned long));
data/snmpkit-0.9/src/ber.C:173:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(reinterpret_cast<unsigned char*>(&val)+sizeof(unsigned long)-
data/snmpkit-0.9/src/ber.C:179:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[sizeof(unsigned long)];
data/snmpkit-0.9/src/ber.C:182:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,&valu,sizeof(unsigned long));
data/snmpkit-0.9/src/ber.C:195:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/snmpkit-0.9/src/ber.C:209:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/snmpkit-0.9/src/ber.C:240:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/snmpkit-0.9/src/ber.h:81:38: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
return static_cast<char_type*>(memcpy(__s1, __s2, __n));
data/snmpkit-0.9/src/beroid.C:106:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[sizeof(long)+1];
data/snmpkit-0.9/src/beroid.C:171:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[60];
data/snmpkit-0.9/src/session.C:303:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest->h_addr_list[i],src->h_addr_list[i],dest->h_length);
data/snmpkit-0.9/src/session.C:353:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[20];
data/snmpkit-0.9/src/session.C:365:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[256];
data/snmpkit-0.9/src/session.C:387:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char littlebuf[10];
data/snmpkit-0.9/src/session.C:486:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/snmpkit-0.9/src/session.C:518:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/snmpkit-0.9/src/snmpsock.C:216:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((caddr_t)&sain.sin_addr,addr,addrlen);
data/snmpkit-0.9/src/snmptest3.C:97:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end=model_begin+strlen(model_begin);
ANALYSIS SUMMARY:
Hits = 28
Lines analyzed = 3222 in approximately 0.11 seconds (29920 lines/second)
Physical Source Lines of Code (SLOC) = 2347
Hits@level = [0] 15 [1] 1 [2] 27 [3] 0 [4] 0 [5] 0
Hits@level+ = [0+] 43 [1+] 28 [2+] 27 [3+] 0 [4+] 0 [5+] 0
Hits/KSLOC@level+ = [0+] 18.3213 [1+] 11.9301 [2+] 11.504 [3+] 0 [4+] 0 [5+] 0
Suppressed hits = 5 (use --neverignore to show them)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.