Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/xapp-1.8.9/libxapp/xapp-glade-catalog.c
Examining data/xapp-1.8.9/libxapp/xapp-gtk-window.c
Examining data/xapp-1.8.9/libxapp/xapp-gtk-window.h
Examining data/xapp-1.8.9/libxapp/xapp-icon-chooser-button.c
Examining data/xapp-1.8.9/libxapp/xapp-icon-chooser-button.h
Examining data/xapp-1.8.9/libxapp/xapp-icon-chooser-dialog.c
Examining data/xapp-1.8.9/libxapp/xapp-icon-chooser-dialog.h
Examining data/xapp-1.8.9/libxapp/xapp-kbd-layout-controller.c
Examining data/xapp-1.8.9/libxapp/xapp-kbd-layout-controller.h
Examining data/xapp-1.8.9/libxapp/xapp-monitor-blanker.c
Examining data/xapp-1.8.9/libxapp/xapp-monitor-blanker.h
Examining data/xapp-1.8.9/libxapp/xapp-preferences-window.c
Examining data/xapp-1.8.9/libxapp/xapp-preferences-window.h
Examining data/xapp-1.8.9/libxapp/xapp-stack-sidebar.c
Examining data/xapp-1.8.9/libxapp/xapp-stack-sidebar.h
Examining data/xapp-1.8.9/libxapp/xapp-status-icon-monitor.c
Examining data/xapp-1.8.9/libxapp/xapp-status-icon-monitor.h
Examining data/xapp-1.8.9/libxapp/xapp-status-icon.c
Examining data/xapp-1.8.9/libxapp/xapp-status-icon.h
Examining data/xapp-1.8.9/libxapp/xapp-util.c
Examining data/xapp-1.8.9/libxapp/xapp-util.h
Examining data/xapp-1.8.9/xapp-sn-watcher/sn-item.c
Examining data/xapp-1.8.9/xapp-sn-watcher/sn-item.h
Examining data/xapp-1.8.9/xapp-sn-watcher/xapp-sn-watcher.c
FINAL RESULTS:
data/xapp-1.8.9/libxapp/xapp-status-icon-monitor.c:186:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
if (sscanf (name, STATUS_ICON_ID_FORMAT, &pid, &id) == 2)
data/xapp-1.8.9/xapp-sn-watcher/sn-item.c:403:44: [3] (buffer) g_get_tmp_dir:
This function is synonymous with 'getenv("TMP")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
save_filename = g_build_path ("/", g_get_tmp_dir (), filename, NULL);
data/xapp-1.8.9/libxapp/xapp-gtk-window.c:105:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
PropModeReplace, (guchar *) str, strlen (str));
data/xapp-1.8.9/libxapp/xapp-icon-chooser-dialog.c:1833:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (search_text) < 2)
data/xapp-1.8.9/xapp-sn-watcher/sn-item.c:681:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (str != NULL && strlen(str) > 0)
ANALYSIS SUMMARY:
Hits = 5
Lines analyzed = 9735 in approximately 0.21 seconds (46188 lines/second)
Physical Source Lines of Code (SLOC) = 6754
Hits@level = [0] 0 [1] 3 [2] 0 [3] 1 [4] 1 [5] 0
Hits@level+ = [0+] 5 [1+] 5 [2+] 2 [3+] 2 [4+] 1 [5+] 0
Hits/KSLOC@level+ = [0+] 0.740302 [1+] 0.740302 [2+] 0.296121 [3+] 0.296121 [4+] 0.14806 [5+] 0
Dot directories skipped = 2 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.