Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/xserver-xorg-video-cirrus-1.5.3/src/cir_dga.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/lg_i2c.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/CirrusClk.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/alp.h Examining data/xserver-xorg-video-cirrus-1.5.3/src/cir_shadow.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/lg_xaa.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/alp_i2c.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/alp_hwcurs.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/lg_hwcurs.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/alp_driver.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/cir_driver.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/lg_driver.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/lg_xaa.h Examining data/xserver-xorg-video-cirrus-1.5.3/src/cir.h Examining data/xserver-xorg-video-cirrus-1.5.3/src/alp_xaam.c Examining data/xserver-xorg-video-cirrus-1.5.3/src/lg.h Examining data/xserver-xorg-video-cirrus-1.5.3/src/cir_pcirename.h Examining data/xserver-xorg-video-cirrus-1.5.3/src/compat-api.h Examining data/xserver-xorg-video-cirrus-1.5.3/src/alp_xaa.c FINAL RESULTS: data/xserver-xorg-video-cirrus-1.5.3/src/alp.h:39:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ExtVga[CIR_NSAVED]; data/xserver-xorg-video-cirrus-1.5.3/src/alp_driver.c:609:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCir->Options, CirOptions, sizeof(CirOptions)); data/xserver-xorg-video-cirrus-1.5.3/src/alp_hwcurs.c:52:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char mem[2*MAXCURSORSIZE]; data/xserver-xorg-video-cirrus-1.5.3/src/alp_hwcurs.c:108:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(memx, mem, 2*CURSORSIZE); data/xserver-xorg-video-cirrus-1.5.3/src/alp_hwcurs.c:135:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pAlp->HWCursorBits, pAlp->CursorBits, 2*CURSORSIZE); data/xserver-xorg-video-cirrus-1.5.3/src/alp_hwcurs.c:154:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pAlp->HWCursorBits, bits, 2*CURSORSIZE); data/xserver-xorg-video-cirrus-1.5.3/src/alp_xaa.c:299:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCir->FbBase + pAlp->monoPattern8x8, &patx, 4); data/xserver-xorg-video-cirrus-1.5.3/src/alp_xaa.c:300:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCir->FbBase + pAlp->monoPattern8x8 + 4, &paty, 4); data/xserver-xorg-video-cirrus-1.5.3/src/cir_shadow.c:47:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, width); data/xserver-xorg-video-cirrus-1.5.3/src/lg.h:44:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ExtVga[LG_LAST_REG]; data/xserver-xorg-video-cirrus-1.5.3/src/lg_driver.c:460:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCir->Options, LgOptions, sizeof(LgOptions)); ANALYSIS SUMMARY: Hits = 11 Lines analyzed = 8022 in approximately 0.20 seconds (40389 lines/second) Physical Source Lines of Code (SLOC) = 5535 Hits@level = [0] 0 [1] 0 [2] 11 [3] 0 [4] 0 [5] 0 Hits@level+ = [0+] 11 [1+] 11 [2+] 11 [3+] 0 [4+] 0 [5+] 0 Hits/KSLOC@level+ = [0+] 1.98735 [1+] 1.98735 [2+] 1.98735 [3+] 0 [4+] 0 [5+] 0 Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.