Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-backproject-irregular-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-backproject-irregular-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-bin-voxels-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-bin-voxels-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-destrip-sinogram-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-destrip-sinogram-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-med-mad-reject-2d-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-med-mad-reject-2d-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-med-mad-reject-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-med-mad-reject-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-ocl-1liner-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-ocl-1liner-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-stat-monitor-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-stat-monitor-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-sxc-common.c Examining data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-sxc-common.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/hdf5.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/hdf5.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-addressing.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-common.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-common.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-conebeam.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-conebeam.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-ctgeometry.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-ctgeometry.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-fft.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-fft.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-interpolation.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-math.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-math.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-scarray.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-scarray.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/lamino-roi.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/lamino-roi.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-edf-reader.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-edf-reader.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-hdf5-reader.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-hdf5-reader.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-raw-reader.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-raw-reader.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-reader.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-reader.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-tiff-reader.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-tiff-reader.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-average-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-average-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-backproject-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-backproject-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-bin-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-bin-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-binarize-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-binarize-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-blur-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-blur-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-buffer-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-buffer-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-calculate-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-calculate-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-camera-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-camera-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-center-of-rotation-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-center-of-rotation-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-clip-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-clip-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-concatenate-result-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-concatenate-result-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-cone-beam-projection-weight-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-cone-beam-projection-weight-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-contrast-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-contrast-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-correlate-stacks-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-correlate-stacks-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-crop-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-crop-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-cut-sinogram-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-cut-sinogram-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-cut-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-cut-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-cv-show-task.cpp Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-cv-show-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-denoise-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-denoise-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-detect-edge-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-detect-edge-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-dfi-sinc-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-dfi-sinc-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-dummy-data-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-dummy-data-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-dump-ring-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-dump-ring-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-duplicate-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-duplicate-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-fft-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-fft-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-fftmult-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-fftmult-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-filter-particle-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-filter-particle-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-filter-stripes-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-filter-stripes-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-filter-stripes1d-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-filter-stripes1d-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-filter-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-filter-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-find-large-spots-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-find-large-spots-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-flat-field-correct-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-flat-field-correct-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-flatten-inplace-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-flatten-inplace-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-flatten-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-flatten-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-flip-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-flip-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-forwardproject-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-forwardproject-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-gemm-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-gemm-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-general-backproject-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-general-backproject-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-get-dup-circ-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-get-dup-circ-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-gradient-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-gradient-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-horizontal-interpolate-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-horizontal-interpolate-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ifft-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ifft-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-interpolate-stream-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-interpolate-stream-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-interpolate-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-interpolate-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-lamino-backproject-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-lamino-backproject-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-loop-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-loop-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-map-color-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-map-color-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-map-slice-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-map-slice-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-mask-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-mask-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-measure-sharpness-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-measure-sharpness-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-measure-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-measure-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-median-filter-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-median-filter-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-memory-in-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-memory-in-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-memory-out-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-memory-out-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-merge-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-merge-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-metaballs-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-metaballs-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-monitor-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-monitor-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-non-local-means-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-non-local-means-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-null-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-null-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-opencl-reduce-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-opencl-reduce-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-opencl-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-opencl-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ordfilt-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ordfilt-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-pad-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-pad-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-polar-coordinates-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-polar-coordinates-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-power-spectrum-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-power-spectrum-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-priv.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-priv.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-read-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-read-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-reduce-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-reduce-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-refeed-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-refeed-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-remove-circle-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-remove-circle-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-remove-outliers-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-remove-outliers-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-replicate-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-replicate-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-rescale-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-rescale-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-retrieve-phase-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-retrieve-phase-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ring-coordinates.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ring-pattern-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ring-pattern-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-rotate-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-rotate-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-segment-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-segment-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-sleep-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-sleep-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-slice-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-slice-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-sliding-stack-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-sliding-stack-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-stack-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-stack-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-stamp-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-stamp-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-stdin-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-stdin-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-stitch-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-stitch-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-subtract-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-subtract-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-swap-quadrants-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-swap-quadrants-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-tile-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-tile-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-transpose-projections-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-transpose-projections-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-transpose-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-transpose-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-unsplit-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-unsplit-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-volume-render-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-volume-render-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-write-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-write-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zeropad-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zeropad-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zmq-common.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zmq-pub-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zmq-pub-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zmq-sub-task.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zmq-sub-task.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-hdf5-writer.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-hdf5-writer.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-jpeg-writer.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-jpeg-writer.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-raw-writer.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-raw-writer.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-tiff-writer.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-tiff-writer.h Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-writer.c Examining data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-writer.h FINAL RESULTS: data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c:114:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. count = sprintf(str, "filename %s\n", piv_file_name); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c:139:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s%i.txt", priv->filename, file_count); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-metaballs-task.c:96:40: [3] (random) g_random_double_range: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. priv->balls[i].size = (gfloat) g_random_double_range (0.01 * f_width, 0.05 * f_width); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-metaballs-task.c:97:37: [3] (random) g_random_double_range: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. priv->balls[i].x = (gfloat) g_random_double_range (0.0, (double) f_width); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-metaballs-task.c:98:37: [3] (random) g_random_double_range: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. priv->balls[i].y = (gfloat) g_random_double_range (0.0, (double) f_height); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-metaballs-task.c:99:38: [3] (random) g_random_double_range: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. priv->balls[i].vx = (gfloat) g_random_double_range (-4.0, 4.0); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-metaballs-task.c:100:38: [3] (random) g_random_double_range: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. priv->balls[i].vy = (gfloat) g_random_double_range (-4.0, 4.0); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-segment-task.c:248:35: [3] (random) g_random_double: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. random_host[i] = (gfloat) g_random_double (); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zmq-sub-task.c:345:31: [3] (random) g_random_int: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. self->priv->id = (gint32) g_random_int (); data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-backproject-irregular-task.c:589:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fp = fopen(priv->angle_val_filename, "r"); data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-bin-voxels-task.c:97:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char kernel_opts[1024]; data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-destrip-sinogram-task.c:125:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char kernel_opts[1024]; data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-med-mad-reject-2d-task.c:85:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char kernel_opts[1024]; data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-ocl-1liner-task.c:90:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char skel_in_macro[1024]; data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-ocl-1liner-task.c:91:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char skel_in[1024]; data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-stat-monitor-task.c:171:27: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). priv->stat_file = fopen (priv->stat_fn, "a"); data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-sxc-common.c:43:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_val[2048]; data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-sxc-common.c:152:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exts_val[2048]; data/ufo-filters-0.16.0.159.g483ce16/src/common/ufo-fft.c:81:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&fft->seen, param, sizeof (UfoFftParameter)); data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-edf-reader.c:66:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). priv->fp = fopen (filename, "rb"); data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-edf-reader.c:250:44: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). requisition->dims[0] = (guint) atoi (value); data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-edf-reader.c:253:51: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). requisition->dims[1] = priv->height = atoi (value); data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-edf-reader.c:267:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). priv->size = atoi (value); data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-raw-reader.c:94:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). priv->fp = fopen (filename, "rb"); data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-reader.c:40:43: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return UFO_READER_GET_IFACE (reader)->open (reader, filename, start, error); data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-reader.h:43:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). gboolean (*open) (UfoReader *reader, data/ufo-filters-0.16.0.159.g483ce16/src/ufo-concatenate-result-task.c:245:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (res, rings, (unsigned) (rings->nb_elt) * sizeof (UfoRingCoordinate) + sizeof (float)); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-dfi-sinc-task.c:162:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy ((void *)h_ktbl_buffer, (const gpointer) tmp_ktbl, priv->number_presampled_values * sizeof (gfloat)); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-get-dup-circ-task.c:146:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (priv->coord, coord, nb_elt * sizeof (UfoRingCoordinate)); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-map-slice-task.c:129:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&dst[(y + i) * requisition->dims[0] + x], data/ufo-filters-0.16.0.159.g483ce16/src/ufo-memory-in-task.c:122:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (data, &priv->pointer[priv->read * priv->width * priv->height], priv->width * priv->height * priv->bytes_per_pixel); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-memory-out-task.c:127:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&out_mem[priv->written], in_mem, size); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c:110:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[256]; data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c:120:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. count = sprintf(str, "index %u\n", piv_file_idx); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c:138:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[256]; data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c:140:22: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). priv->file = fopen (filename, "w"); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c:148:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[256]; data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c:149:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. int count = sprintf(str, "ring_count %u\n", (unsigned) ring_stream->nb_elt); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-ringwriter-task.c:160:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. count = sprintf(str, "ring_coord %i %i %f\n", x, y, r); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-slice-task.c:137:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (dst, src + priv->current * priv->size / sizeof(gfloat), priv->size); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-sliding-stack-task.c:124:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (priv->window + priv->current % priv->n_items * size, in_mem, size); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-sliding-stack-task.c:130:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (priv->window + i * size, in_mem, size); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-sliding-stack-task.c:141:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (out_mem + i * size, priv->window + j % priv->n_items * size, size); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-sliding-stack-task.c:144:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (out_mem, priv->window, window_size); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-stack-task.c:116:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (out_mem + priv->current * size, in_mem, size); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-transpose-projections-task.c:86:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (priv->sinograms + sino_index + i * sino_mem_offset, data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zmq-pub-task.c:292:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (dst, header, header_size); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zmq-pub-task.c:299:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (dst, src, size); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-zmq-sub-task.c:249:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (ufo_buffer_get_host_array (output, NULL), zmq_msg_data (&msg), size); data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-jpeg-writer.c:70:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). priv->fp = fopen (filename, "wb"); data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-raw-writer.c:59:44: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). priv->fp = filename == NULL ? stdout : fopen (filename, "wb"); data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-writer.c:37:36: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). UFO_WRITER_GET_IFACE (writer)->open (writer, filename); data/ufo-filters-0.16.0.159.g483ce16/src/writers/ufo-writer.h:51:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). void (*open) (UfoWriter *writer, data/ufo-filters-0.16.0.159.g483ce16/contrib/ufo-backproject-irregular-task.c:525:60: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. #warning The backproject task is installing an node_class->equal specific function, required here ? data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-reader.c:72:36: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). UFO_READER_GET_IFACE (reader)->read (reader, buffer, requisition, roi_y, roi_height, roi_step); data/ufo-filters-0.16.0.159.g483ce16/src/readers/ufo-reader.h:53:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). void (*read) (UfoReader *reader, data/ufo-filters-0.16.0.159.g483ce16/src/ufo-calculate-task.c:61:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). source = (gchar *) g_try_malloc (strlen (template) + strlen (expression)); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-calculate-task.c:61:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). source = (gchar *) g_try_malloc (strlen (template) + strlen (expression)); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-calculate-task.c:72:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((gsize) g_sprintf (source, template, expression) != strlen (source)) { data/ufo-filters-0.16.0.159.g483ce16/src/ufo-general-backproject-task.c:675:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (fmt) + 1; data/ufo-filters-0.16.0.159.g483ce16/src/ufo-general-backproject-task.c:1014:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). written += strlen (str_iteration); data/ufo-filters-0.16.0.159.g483ce16/src/ufo-memory-in-task.c:31:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). guint read; data/ufo-filters-0.16.0.159.g483ce16/src/ufo-memory-in-task.c:122:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy (data, &priv->pointer[priv->read * priv->width * priv->height], priv->width * priv->height * priv->bytes_per_pixel); ANALYSIS SUMMARY: Hits = 63 Lines analyzed = 45428 in approximately 1.02 seconds (44713 lines/second) Physical Source Lines of Code (SLOC) = 32024 Hits@level = [0] 33 [1] 10 [2] 44 [3] 7 [4] 2 [5] 0 Hits@level+ = [0+] 96 [1+] 63 [2+] 53 [3+] 9 [4+] 2 [5+] 0 Hits/KSLOC@level+ = [0+] 2.99775 [1+] 1.96727 [2+] 1.65501 [3+] 0.281039 [4+] 0.0624532 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.