Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/acetoneiso-2.4/acetoneiso/sources/leggirigo.h
Examining data/acetoneiso-2.4/acetoneiso/sources/eltorito.h
Examining data/acetoneiso-2.4/acetoneiso/sources/udf.h
Examining data/acetoneiso-2.4/acetoneiso/sources/mount.h
Examining data/acetoneiso-2.4/acetoneiso/sources/backup_audio.h
Examining data/acetoneiso-2.4/acetoneiso/sources/md5check.h
Examining data/acetoneiso-2.4/acetoneiso/sources/foldertoiso.h
Examining data/acetoneiso-2.4/acetoneiso/sources/iso_from_pcgame.h
Examining data/acetoneiso-2.4/acetoneiso/sources/torrent.h
Examining data/acetoneiso-2.4/acetoneiso/sources/dvd_cover.h
Examining data/acetoneiso-2.4/acetoneiso/sources/encrypt.h
Examining data/acetoneiso-2.4/acetoneiso/sources/gmount.h
Examining data/acetoneiso-2.4/acetoneiso/sources/play.h
Examining data/acetoneiso-2.4/acetoneiso/sources/status_mounted_no_boot.h
Examining data/acetoneiso-2.4/acetoneiso/sources/compress.h
Examining data/acetoneiso-2.4/acetoneiso/sources/umount_check.h
Examining data/acetoneiso-2.4/acetoneiso/sources/database.h
Examining data/acetoneiso-2.4/acetoneiso/sources/psxrip.h
Examining data/acetoneiso-2.4/acetoneiso/sources/psp.h
Examining data/acetoneiso-2.4/acetoneiso/sources/devices.h
Examining data/acetoneiso-2.4/acetoneiso/sources/status_mounted.h
Examining data/acetoneiso-2.4/acetoneiso/sources/gencue.h
Examining data/acetoneiso-2.4/acetoneiso/sources/donate.h
Examining data/acetoneiso-2.4/acetoneiso/sources/main.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/a_options.h
Examining data/acetoneiso-2.4/acetoneiso/sources/about.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/about.h
Examining data/acetoneiso-2.4/acetoneiso/sources/acetoneiso.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/burn_iso_2_cd.h
Examining data/acetoneiso-2.4/acetoneiso/sources/burn_iso_2_dvd.h
Examining data/acetoneiso-2.4/acetoneiso/sources/erase_cd.h
Examining data/acetoneiso-2.4/acetoneiso/sources/erase_dvd.h
Examining data/acetoneiso-2.4/acetoneiso/sources/manual.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/manual.h
Examining data/acetoneiso-2.4/acetoneiso/sources/options.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/options.h
Examining data/acetoneiso-2.4/acetoneiso/sources/progress.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/progress.h
Examining data/acetoneiso-2.4/acetoneiso/sources/global_functions.h
Examining data/acetoneiso-2.4/acetoneiso/sources/utube.h
Examining data/acetoneiso-2.4/acetoneiso/sources/converter.h
Examining data/acetoneiso-2.4/acetoneiso/sources/acetoneiso.h
Examining data/acetoneiso-2.4/acetoneiso/sources/audiotools.h
Examining data/acetoneiso-2.4/acetoneiso/sources/burn_iso_2_cd.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/burn_iso_2_dvd.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/connections.h
Examining data/acetoneiso-2.4/acetoneiso/sources/erase_cd.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/erase_dvd.cpp
Examining data/acetoneiso-2.4/acetoneiso/sources/formatcd.h
Examining data/acetoneiso-2.4/acetoneiso/sources/history.h
Examining data/acetoneiso-2.4/acetoneiso/sources/isocd.h
Examining data/acetoneiso-2.4/acetoneiso/sources/messages.h
Examining data/acetoneiso-2.4/acetoneiso/sources/split.h
Examining data/acetoneiso-2.4/acetoneiso/sources/vidgen.h
FINAL RESULTS:
data/acetoneiso-2.4/acetoneiso/sources/main.cpp:32:33: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
QString locale = QLocale::system().name();
data/acetoneiso-2.4/acetoneiso/sources/utube.h:135:5: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (system ("cd $HOME/.acetoneiso/;wget http://www.arrakis.es/~rggi3/metacafe-dl/metacafe-dl > /dev/null 2>&1")) {
data/acetoneiso-2.4/acetoneiso/sources/a_options.h:26:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/a_options.h:103:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/a_options.h:179:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadWrite );
data/acetoneiso-2.4/acetoneiso/sources/a_options.h:253:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadWrite );
data/acetoneiso-2.4/acetoneiso/sources/a_options.h:304:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::WriteOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/a_options.h:320:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::WriteOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/acetoneiso.cpp:136:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileT.open(QIODevice::ReadOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/acetoneiso.cpp:175:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileT.open(QIODevice::ReadOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/acetoneiso.cpp:259:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
advanced.open(QIODevice::WriteOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/acetoneiso.cpp:276:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
advanced.open(QIODevice::WriteOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/acetoneiso.cpp:288:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::WriteOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/acetoneiso.cpp:324:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(windowStateFile.open(QIODevice::WriteOnly))
data/acetoneiso-2.4/acetoneiso/sources/acetoneiso.cpp:335:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(windowStateFile.open(QIODevice::ReadOnly))
data/acetoneiso-2.4/acetoneiso/sources/converter.h:206:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/database.h:23:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/database.h:74:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/database.h:111:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/database.h:154:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/database.h:239:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
filed.open(QIODevice::ReadOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/devices.h:25:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!devicesInfo_file.open(QIODevice::WriteOnly | QIODevice::Text))
data/acetoneiso-2.4/acetoneiso/sources/devices.h:245:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
speedsInfo_file.open( QIODevice::ReadOnly ); //apro il file in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/devices.h:269:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!speedsInfo_file.open(QIODevice::WriteOnly | QIODevice::Text))
data/acetoneiso-2.4/acetoneiso/sources/donate.h:19:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/dvd_cover.h:20:5: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f1.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/foldertoiso.h:22:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/gencue.h:32:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f_cue.open(QIODevice::WriteOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/global_functions.h:36:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/global_functions.h:50:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Mtab.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/global_functions.h:73:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
checkUDF.open(QIODevice::ReadOnly);
data/acetoneiso-2.4/acetoneiso/sources/global_functions.h:103:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/global_functions.h:245:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileT.open(QIODevice::ReadOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/gmount.h:20:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/gmount.h:27:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Mtab.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/gmount.h:85:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Mtab.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/history.h:70:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
history_conf.open(QIODevice::ReadWrite);
data/acetoneiso-2.4/acetoneiso/sources/history.h:97:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
history_new.open(QIODevice::ReadWrite);
data/acetoneiso-2.4/acetoneiso/sources/history.h:241:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
history_conf.open(QIODevice::ReadOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/history.h:264:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileT.open(QIODevice::ReadOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/history.h:282:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileT.open(QIODevice::ReadOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/md5check.h:55:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f1.open(QIODevice::WriteOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/mount.h:58:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/mount.h:71:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
history_conf.open(QIODevice::ReadWrite);
data/acetoneiso-2.4/acetoneiso/sources/mount.h:83:5: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f1.open(QIODevice::WriteOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/play.h:18:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Mtab.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/play.h:23:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/psp.h:29:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QString open;
data/acetoneiso-2.4/acetoneiso/sources/psp.h:31:5: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (open.isNull() ) {
data/acetoneiso-2.4/acetoneiso/sources/psp.h:54:58: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
VIdgen->start("ffmpeg",QStringList() << "-y" << "-i" << open << "-vcodec" << "libxvid" << "-s" << "320x240" << "-r" << "29.97" << "-b" << "200k" << "-acodec" << "libfaac" << "-ac" << "2" << "-ar" << "24000" << "-ab" << "65535" << "-f" << "psp" << "-aspect" << "4:3" << file );
data/acetoneiso-2.4/acetoneiso/sources/status_mounted.h:38:4: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f1.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/status_mounted.h:48:4: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f2.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/status_mounted.h:58:4: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f3.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/status_mounted.h:68:4: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f4.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/status_mounted.h:78:4: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f5.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/status_mounted.h:88:4: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f6.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/status_mounted.h:98:4: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f7.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/status_mounted.h:109:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
dvd_temp.open(QIODevice::ReadOnly);//lo apro in sola lettura
data/acetoneiso-2.4/acetoneiso/sources/torrent.h:25:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileSave.open(QIODevice::ReadOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/torrent.h:182:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileSave.open(QIODevice::Append | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/torrent.h:286:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
cleanFile.open(QIODevice::ReadOnly | QIODevice::Text);
data/acetoneiso-2.4/acetoneiso/sources/torrent.h:294:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
cleanFile.open(QIODevice::ReadWrite);
data/acetoneiso-2.4/acetoneiso/sources/vidgen.h:27:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QString open;
data/acetoneiso-2.4/acetoneiso/sources/vidgen.h:29:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( !open.isNull() ) {
data/acetoneiso-2.4/acetoneiso/sources/vidgen.h:52:53: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
VIdgen->start("mencoder",QStringList() << open << "-ovc" << "xvid" << "-oac" << "mp3lame" << "-xvidencopts" << quant << "-o" << file );
data/acetoneiso-2.4/acetoneiso/sources/vidgen.h:71:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QString open;
data/acetoneiso-2.4/acetoneiso/sources/vidgen.h:73:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( !open.isNull() ) {
data/acetoneiso-2.4/acetoneiso/sources/vidgen.h:90:214: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FLv->start("mencoder",QStringList() << "-ovc" << "lavc" << "-lavcopts" << "vcodec=mpeg4:vbitrate=1000:mbd=2:v4mv:autoaspect" << "-vf" << "pp=lb" << "-oac" << "mp3lame" << "-lameopts" << "cbr:preset=128" << open << "-o" << file );
data/acetoneiso-2.4/acetoneiso/sources/torrent.h:154:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
QTextStream read(string);
data/acetoneiso-2.4/acetoneiso/sources/torrent.h:155:3: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read.seek(0);
data/acetoneiso-2.4/acetoneiso/sources/torrent.h:158:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read.atEnd() ) {
data/acetoneiso-2.4/acetoneiso/sources/torrent.h:162:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
QString name = read.readLine();
ANALYSIS SUMMARY:
Hits = 72
Lines analyzed = 8702 in approximately 0.32 seconds (27400 lines/second)
Physical Source Lines of Code (SLOC) = 5636
Hits@level = [0] 1 [1] 4 [2] 66 [3] 0 [4] 2 [5] 0
Hits@level+ = [0+] 73 [1+] 72 [2+] 68 [3+] 2 [4+] 2 [5+] 0
Hits/KSLOC@level+ = [0+] 12.9524 [1+] 12.775 [2+] 12.0653 [3+] 0.354862 [4+] 0.354862 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.