Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/apr-1.7.0/passwd/apr_getpass.c
Examining data/apr-1.7.0/poll/os2/pollset.c
Examining data/apr-1.7.0/poll/os2/poll.c
Examining data/apr-1.7.0/poll/unix/epoll.c
Examining data/apr-1.7.0/poll/unix/pollset.c
Examining data/apr-1.7.0/poll/unix/kqueue.c
Examining data/apr-1.7.0/poll/unix/select.c
Examining data/apr-1.7.0/poll/unix/pollcb.c
Examining data/apr-1.7.0/poll/unix/poll.c
Examining data/apr-1.7.0/poll/unix/port.c
Examining data/apr-1.7.0/poll/unix/z_asio.c
Examining data/apr-1.7.0/poll/unix/wakeup.c
Examining data/apr-1.7.0/mmap/unix/common.c
Examining data/apr-1.7.0/mmap/unix/mmap.c
Examining data/apr-1.7.0/mmap/win32/mmap.c
Examining data/apr-1.7.0/shmem/os2/shm.c
Examining data/apr-1.7.0/shmem/unix/shm.c
Examining data/apr-1.7.0/shmem/beos/shm.c
Examining data/apr-1.7.0/shmem/win32/shm.c
Examining data/apr-1.7.0/strings/apr_fnmatch.c
Examining data/apr-1.7.0/strings/apr_snprintf.c
Examining data/apr-1.7.0/strings/apr_cstr.c
Examining data/apr-1.7.0/strings/apr_strnatcmp.c
Examining data/apr-1.7.0/strings/apr_strings.c
Examining data/apr-1.7.0/strings/apr_cpystrn.c
Examining data/apr-1.7.0/strings/apr_strtok.c
Examining data/apr-1.7.0/network_io/os2/inet_ntop.c
Examining data/apr-1.7.0/network_io/os2/sockaddr.c
Examining data/apr-1.7.0/network_io/os2/sockopt.c
Examining data/apr-1.7.0/network_io/os2/socket_util.c
Examining data/apr-1.7.0/network_io/os2/sendrecv.c
Examining data/apr-1.7.0/network_io/os2/sockets.c
Examining data/apr-1.7.0/network_io/os2/os2calls.c
Examining data/apr-1.7.0/network_io/os2/sendrecv_udp.c
Examining data/apr-1.7.0/network_io/os2/inet_pton.c
Examining data/apr-1.7.0/network_io/unix/multicast.c
Examining data/apr-1.7.0/network_io/unix/inet_ntop.c
Examining data/apr-1.7.0/network_io/unix/sockaddr.c
Examining data/apr-1.7.0/network_io/unix/sockopt.c
Examining data/apr-1.7.0/network_io/unix/socket_util.c
Examining data/apr-1.7.0/network_io/unix/sendrecv.c
Examining data/apr-1.7.0/network_io/unix/sockets.c
Examining data/apr-1.7.0/network_io/unix/inet_pton.c
Examining data/apr-1.7.0/network_io/beos/socketcommon.c
Examining data/apr-1.7.0/network_io/beos/sendrecv.c
Examining data/apr-1.7.0/network_io/win32/sockopt.c
Examining data/apr-1.7.0/network_io/win32/sendrecv.c
Examining data/apr-1.7.0/network_io/win32/sockets.c
Examining data/apr-1.7.0/support/unix/waitio.c
Examining data/apr-1.7.0/dso/os390/dso.c
Examining data/apr-1.7.0/dso/aix/dso.c
Examining data/apr-1.7.0/dso/os2/dso.c
Examining data/apr-1.7.0/dso/unix/dso.c
Examining data/apr-1.7.0/dso/beos/dso.c
Examining data/apr-1.7.0/dso/netware/dso.c
Examining data/apr-1.7.0/dso/win32/dso.c
Examining data/apr-1.7.0/memory/unix/apr_pools.c
Examining data/apr-1.7.0/locks/os2/proc_mutex.c
Examining data/apr-1.7.0/locks/os2/thread_rwlock.c
Examining data/apr-1.7.0/locks/os2/thread_cond.c
Examining data/apr-1.7.0/locks/os2/thread_mutex.c
Examining data/apr-1.7.0/locks/unix/proc_mutex.c
Examining data/apr-1.7.0/locks/unix/global_mutex.c
Examining data/apr-1.7.0/locks/unix/thread_rwlock.c
Examining data/apr-1.7.0/locks/unix/thread_cond.c
Examining data/apr-1.7.0/locks/unix/thread_mutex.c
Examining data/apr-1.7.0/locks/beos/proc_mutex.c
Examining data/apr-1.7.0/locks/beos/thread_rwlock.c
Examining data/apr-1.7.0/locks/beos/thread_cond.c
Examining data/apr-1.7.0/locks/beos/thread_mutex.c
Examining data/apr-1.7.0/locks/netware/proc_mutex.c
Examining data/apr-1.7.0/locks/netware/thread_rwlock.c
Examining data/apr-1.7.0/locks/netware/thread_cond.c
Examining data/apr-1.7.0/locks/netware/thread_mutex.c
Examining data/apr-1.7.0/locks/win32/proc_mutex.c
Examining data/apr-1.7.0/locks/win32/thread_rwlock.c
Examining data/apr-1.7.0/locks/win32/thread_cond.c
Examining data/apr-1.7.0/locks/win32/thread_mutex.c
Examining data/apr-1.7.0/include/apr_thread_proc.h
Examining data/apr-1.7.0/include/apr_errno.h
Examining data/apr-1.7.0/include/apr_fnmatch.h
Examining data/apr-1.7.0/include/apr_support.h
Examining data/apr-1.7.0/include/apr_thread_cond.h
Examining data/apr-1.7.0/include/apr_network_io.h
Examining data/apr-1.7.0/include/apr_lib.h
Examining data/apr-1.7.0/include/apr_perms_set.h
Examining data/apr-1.7.0/include/apr_time.h
Examining data/apr-1.7.0/include/apr_user.h
Examining data/apr-1.7.0/include/apr_thread_rwlock.h
Examining data/apr-1.7.0/include/apr_version.h
Examining data/apr-1.7.0/include/apr_general.h
Examining data/apr-1.7.0/include/apr_strings.h
Examining data/apr-1.7.0/include/apr_file_io.h
Examining data/apr-1.7.0/include/apr_want.h
Examining data/apr-1.7.0/include/apr_shm.h
Examining data/apr-1.7.0/include/apr_tables.h
Examining data/apr-1.7.0/include/apr_mmap.h
Examining data/apr-1.7.0/include/private/apr_encode_private.h
Examining data/apr-1.7.0/include/arch/os390/apr_arch_dso.h
Examining data/apr-1.7.0/include/arch/aix/apr_arch_dso.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_inherit.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_thread_mutex.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_file_io.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_thread_rwlock.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_threadproc.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_dso.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_networkio.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_proc_mutex.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_os2calls.h
Examining data/apr-1.7.0/include/arch/os2/apr_arch_thread_cond.h
Examining data/apr-1.7.0/include/arch/apr_private_common.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_shm.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_inherit.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_thread_mutex.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_poll_private.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_file_io.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_thread_rwlock.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_threadproc.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_dso.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_misc.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_global_mutex.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_networkio.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_proc_mutex.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_internal_time.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_thread_cond.h
Examining data/apr-1.7.0/include/arch/unix/apr_arch_atomic.h
Examining data/apr-1.7.0/include/arch/beos/apr_arch_thread_mutex.h
Examining data/apr-1.7.0/include/arch/beos/apr_arch_thread_rwlock.h
Examining data/apr-1.7.0/include/arch/beos/apr_arch_threadproc.h
Examining data/apr-1.7.0/include/arch/beos/apr_arch_dso.h
Examining data/apr-1.7.0/include/arch/beos/apr_arch_proc_mutex.h
Examining data/apr-1.7.0/include/arch/beos/apr_arch_thread_cond.h
Examining data/apr-1.7.0/include/arch/netware/apr_private.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_thread_mutex.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_file_io.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_thread_rwlock.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_pre_nw.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_threadproc.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_dso.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_global_mutex.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_networkio.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_proc_mutex.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_internal_time.h
Examining data/apr-1.7.0/include/arch/netware/apr_arch_thread_cond.h
Examining data/apr-1.7.0/include/arch/win32/apr_private.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_inherit.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_thread_mutex.h
Examining data/apr-1.7.0/include/arch/win32/apr_dbg_win32_handles.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_file_io.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_thread_rwlock.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_threadproc.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_dso.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_atime.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_misc.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_networkio.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_utf8.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_proc_mutex.h
Examining data/apr-1.7.0/include/arch/win32/apr_arch_thread_cond.h
Examining data/apr-1.7.0/include/apr_env.h
Examining data/apr-1.7.0/include/apr_pools.h
Examining data/apr-1.7.0/include/apr_proc_mutex.h
Examining data/apr-1.7.0/include/apr_atomic.h
Examining data/apr-1.7.0/include/apr_file_info.h
Examining data/apr-1.7.0/include/apr_portable.h
Examining data/apr-1.7.0/include/apr_encode.h
Examining data/apr-1.7.0/include/apr_allocator.h
Examining data/apr-1.7.0/include/apr_poll.h
Examining data/apr-1.7.0/include/apr_hash.h
Examining data/apr-1.7.0/include/apr_getopt.h
Examining data/apr-1.7.0/include/apr_cstr.h
Examining data/apr-1.7.0/include/apr_random.h
Examining data/apr-1.7.0/include/apr_escape.h
Examining data/apr-1.7.0/include/apr_inherit.h
Examining data/apr-1.7.0/include/apr_skiplist.h
Examining data/apr-1.7.0/include/apr_global_mutex.h
Examining data/apr-1.7.0/include/apr_ring.h
Examining data/apr-1.7.0/include/apr_thread_mutex.h
Examining data/apr-1.7.0/include/apr_dso.h
Examining data/apr-1.7.0/include/apr_signal.h
Examining data/apr-1.7.0/threadproc/os2/signals.c
Examining data/apr-1.7.0/threadproc/os2/thread.c
Examining data/apr-1.7.0/threadproc/os2/threadpriv.c
Examining data/apr-1.7.0/threadproc/os2/proc.c
Examining data/apr-1.7.0/threadproc/unix/procsup.c
Examining data/apr-1.7.0/threadproc/unix/signals.c
Examining data/apr-1.7.0/threadproc/unix/thread.c
Examining data/apr-1.7.0/threadproc/unix/threadpriv.c
Examining data/apr-1.7.0/threadproc/unix/proc.c
Examining data/apr-1.7.0/threadproc/beos/threadproc_common.c
Examining data/apr-1.7.0/threadproc/beos/thread.c
Examining data/apr-1.7.0/threadproc/beos/threadpriv.c
Examining data/apr-1.7.0/threadproc/beos/proc.c
Examining data/apr-1.7.0/threadproc/beos/apr_proc_stub.c
Examining data/apr-1.7.0/threadproc/netware/procsup.c
Examining data/apr-1.7.0/threadproc/netware/signals.c
Examining data/apr-1.7.0/threadproc/netware/thread.c
Examining data/apr-1.7.0/threadproc/netware/threadpriv.c
Examining data/apr-1.7.0/threadproc/netware/proc.c
Examining data/apr-1.7.0/threadproc/win32/signals.c
Examining data/apr-1.7.0/threadproc/win32/thread.c
Examining data/apr-1.7.0/threadproc/win32/threadpriv.c
Examining data/apr-1.7.0/threadproc/win32/proc.c
Examining data/apr-1.7.0/test/testargs.c
Examining data/apr-1.7.0/test/testpools.c
Examining data/apr-1.7.0/test/testsockets.c
Examining data/apr-1.7.0/test/mod_test.c
Examining data/apr-1.7.0/test/testfilecopy.c
Examining data/apr-1.7.0/test/testlock.c
Examining data/apr-1.7.0/test/testutil.h
Examining data/apr-1.7.0/test/testflock.h
Examining data/apr-1.7.0/test/testlfs.c
Examining data/apr-1.7.0/test/testpath.c
Examining data/apr-1.7.0/test/teststr.c
Examining data/apr-1.7.0/test/abts.c
Examining data/apr-1.7.0/test/testlockperf.c
Examining data/apr-1.7.0/test/testuser.c
Examining data/apr-1.7.0/test/testglobalmutex.c
Examining data/apr-1.7.0/test/testshmconsumer.c
Examining data/apr-1.7.0/test/testtemp.c
Examining data/apr-1.7.0/test/tryread.c
Examining data/apr-1.7.0/test/testencode.c
Examining data/apr-1.7.0/test/testrand.c
Examining data/apr-1.7.0/test/testnames.c
Examining data/apr-1.7.0/test/testshmproducer.c
Examining data/apr-1.7.0/test/testthread.c
Examining data/apr-1.7.0/test/testatomic.c
Examining data/apr-1.7.0/test/testsock.h
Examining data/apr-1.7.0/test/abts_tests.h
Examining data/apr-1.7.0/test/testvsn.c
Examining data/apr-1.7.0/test/testdup.c
Examining data/apr-1.7.0/test/testtable.c
Examining data/apr-1.7.0/test/testdso.c
Examining data/apr-1.7.0/test/testflock.c
Examining data/apr-1.7.0/test/nw_misc.c
Examining data/apr-1.7.0/test/testipsub.c
Examining data/apr-1.7.0/test/sockchild.c
Examining data/apr-1.7.0/test/testtime.c
Examining data/apr-1.7.0/test/testfnmatch.c
Examining data/apr-1.7.0/test/testhash.c
Examining data/apr-1.7.0/test/readchild.c
Examining data/apr-1.7.0/test/testoc.c
Examining data/apr-1.7.0/test/testud.c
Examining data/apr-1.7.0/test/testproc.c
Examining data/apr-1.7.0/test/echod.c
Examining data/apr-1.7.0/test/sockperf.c
Examining data/apr-1.7.0/test/testmmap.c
Examining data/apr-1.7.0/test/testfile.c
Examining data/apr-1.7.0/test/testcond.c
Examining data/apr-1.7.0/test/internal/testucs.c
Examining data/apr-1.7.0/test/internal/testregex.c
Examining data/apr-1.7.0/test/testutil.c
Examining data/apr-1.7.0/test/testskiplist.c
Examining data/apr-1.7.0/test/testshm.h
Examining data/apr-1.7.0/test/testsockopt.c
Examining data/apr-1.7.0/test/testmutexscope.c
Examining data/apr-1.7.0/test/sendfile.c
Examining data/apr-1.7.0/test/abts.h
Examining data/apr-1.7.0/test/testpipe.c
Examining data/apr-1.7.0/test/globalmutexchild.c
Examining data/apr-1.7.0/test/teststrnatcmp.c
Examining data/apr-1.7.0/test/testsleep.c
Examining data/apr-1.7.0/test/testenv.c
Examining data/apr-1.7.0/test/testshm.c
Examining data/apr-1.7.0/test/testglobalmutex.h
Examining data/apr-1.7.0/test/testfmt.c
Examining data/apr-1.7.0/test/testprocmutex.c
Examining data/apr-1.7.0/test/testescape.c
Examining data/apr-1.7.0/test/testfileinfo.c
Examining data/apr-1.7.0/test/testapp.c
Examining data/apr-1.7.0/test/testdir.c
Examining data/apr-1.7.0/test/occhild.c
Examining data/apr-1.7.0/test/proc_child.c
Examining data/apr-1.7.0/test/testsock.c
Examining data/apr-1.7.0/test/testpoll.c
Examining data/apr-1.7.0/encoding/apr_escape.c
Examining data/apr-1.7.0/encoding/apr_encode.c
Examining data/apr-1.7.0/user/unix/userinfo.c
Examining data/apr-1.7.0/user/unix/groupinfo.c
Examining data/apr-1.7.0/user/netware/userinfo.c
Examining data/apr-1.7.0/user/netware/groupinfo.c
Examining data/apr-1.7.0/user/win32/userinfo.c
Examining data/apr-1.7.0/user/win32/groupinfo.c
Examining data/apr-1.7.0/file_io/os2/copy.c
Examining data/apr-1.7.0/file_io/os2/tempdir.c
Examining data/apr-1.7.0/file_io/os2/maperrorcode.c
Examining data/apr-1.7.0/file_io/os2/pipe.c
Examining data/apr-1.7.0/file_io/os2/filesys.c
Examining data/apr-1.7.0/file_io/os2/readwrite.c
Examining data/apr-1.7.0/file_io/os2/dir.c
Examining data/apr-1.7.0/file_io/os2/dir_make_recurse.c
Examining data/apr-1.7.0/file_io/os2/mktemp.c
Examining data/apr-1.7.0/file_io/os2/buffer.c
Examining data/apr-1.7.0/file_io/os2/fullrw.c
Examining data/apr-1.7.0/file_io/os2/seek.c
Examining data/apr-1.7.0/file_io/os2/filepath.c
Examining data/apr-1.7.0/file_io/os2/filedup.c
Examining data/apr-1.7.0/file_io/os2/filepath_util.c
Examining data/apr-1.7.0/file_io/os2/fileacc.c
Examining data/apr-1.7.0/file_io/os2/filestat.c
Examining data/apr-1.7.0/file_io/os2/flock.c
Examining data/apr-1.7.0/file_io/os2/open.c
Examining data/apr-1.7.0/file_io/unix/copy.c
Examining data/apr-1.7.0/file_io/unix/tempdir.c
Examining data/apr-1.7.0/file_io/unix/pipe.c
Examining data/apr-1.7.0/file_io/unix/readwrite.c
Examining data/apr-1.7.0/file_io/unix/dir.c
Examining data/apr-1.7.0/file_io/unix/mktemp.c
Examining data/apr-1.7.0/file_io/unix/buffer.c
Examining data/apr-1.7.0/file_io/unix/fullrw.c
Examining data/apr-1.7.0/file_io/unix/seek.c
Examining data/apr-1.7.0/file_io/unix/filepath.c
Examining data/apr-1.7.0/file_io/unix/filedup.c
Examining data/apr-1.7.0/file_io/unix/filepath_util.c
Examining data/apr-1.7.0/file_io/unix/fileacc.c
Examining data/apr-1.7.0/file_io/unix/filestat.c
Examining data/apr-1.7.0/file_io/unix/open.c
Examining data/apr-1.7.0/file_io/unix/flock.c
Examining data/apr-1.7.0/file_io/netware/pipe.c
Examining data/apr-1.7.0/file_io/netware/filesys.c
Examining data/apr-1.7.0/file_io/netware/mktemp.c
Examining data/apr-1.7.0/file_io/netware/filepath.c
Examining data/apr-1.7.0/file_io/netware/filestat.c
Examining data/apr-1.7.0/file_io/netware/flock.c
Examining data/apr-1.7.0/file_io/win32/pipe.c
Examining data/apr-1.7.0/file_io/win32/filesys.c
Examining data/apr-1.7.0/file_io/win32/readwrite.c
Examining data/apr-1.7.0/file_io/win32/dir.c
Examining data/apr-1.7.0/file_io/win32/buffer.c
Examining data/apr-1.7.0/file_io/win32/seek.c
Examining data/apr-1.7.0/file_io/win32/filepath.c
Examining data/apr-1.7.0/file_io/win32/filedup.c
Examining data/apr-1.7.0/file_io/win32/filestat.c
Examining data/apr-1.7.0/file_io/win32/flock.c
Examining data/apr-1.7.0/file_io/win32/open.c
Examining data/apr-1.7.0/random/unix/sha2_glue.c
Examining data/apr-1.7.0/random/unix/apr_random.c
Examining data/apr-1.7.0/random/unix/sha2.h
Examining data/apr-1.7.0/random/unix/sha2.c
Examining data/apr-1.7.0/time/unix/timestr.c
Examining data/apr-1.7.0/time/unix/time.c
Examining data/apr-1.7.0/time/win32/timestr.c
Examining data/apr-1.7.0/time/win32/time.c
Examining data/apr-1.7.0/misc/unix/otherchild.c
Examining data/apr-1.7.0/misc/unix/getopt.c
Examining data/apr-1.7.0/misc/unix/env.c
Examining data/apr-1.7.0/misc/unix/version.c
Examining data/apr-1.7.0/misc/unix/start.c
Examining data/apr-1.7.0/misc/unix/errorcodes.c
Examining data/apr-1.7.0/misc/unix/charset.c
Examining data/apr-1.7.0/misc/unix/rand.c
Examining data/apr-1.7.0/misc/netware/libprews.c
Examining data/apr-1.7.0/misc/netware/start.c
Examining data/apr-1.7.0/misc/netware/charset.c
Examining data/apr-1.7.0/misc/netware/rand.c
Examining data/apr-1.7.0/misc/win32/utf8.c
Examining data/apr-1.7.0/misc/win32/env.c
Examining data/apr-1.7.0/misc/win32/start.c
Examining data/apr-1.7.0/misc/win32/misc.c
Examining data/apr-1.7.0/misc/win32/charset.c
Examining data/apr-1.7.0/misc/win32/internal.c
Examining data/apr-1.7.0/misc/win32/rand.c
Examining data/apr-1.7.0/misc/win32/apr_app.c
Examining data/apr-1.7.0/tables/apr_skiplist.c
Examining data/apr-1.7.0/tables/apr_tables.c
Examining data/apr-1.7.0/tables/apr_hash.c
Examining data/apr-1.7.0/tools/gen_test_char.c
Examining data/apr-1.7.0/atomic/os390/atomic.c
Examining data/apr-1.7.0/atomic/unix/solaris.c
Examining data/apr-1.7.0/atomic/unix/mutex.c
Examining data/apr-1.7.0/atomic/unix/mutex64.c
Examining data/apr-1.7.0/atomic/unix/s390.c
Examining data/apr-1.7.0/atomic/unix/ia32.c
Examining data/apr-1.7.0/atomic/unix/ppc.c
Examining data/apr-1.7.0/atomic/unix/builtins64.c
Examining data/apr-1.7.0/atomic/unix/builtins.c
Examining data/apr-1.7.0/atomic/netware/apr_atomic.c
Examining data/apr-1.7.0/atomic/win32/apr_atomic64.c
Examining data/apr-1.7.0/atomic/win32/apr_atomic.c
Examining data/apr-1.7.0/build/jlibtool.c
Examining data/apr-1.7.0/build/aplibtool.c
FINAL RESULTS:
data/apr-1.7.0/file_io/netware/filestat.c:136:9: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(fname, mode) == -1)
data/apr-1.7.0/file_io/unix/filestat.c:179:9: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(fname, mode) == -1)
data/apr-1.7.0/threadproc/win32/proc.c:320:9: [5] (misc) SetSecurityDescriptorDacl:
Never create NULL ACLs; an attacker can set it to Everyone (Deny All
Access), which would even forbid administrator access (CWE-732).
SetSecurityDescriptorDacl(attr->sd, -1, 0, 0);
data/apr-1.7.0/threadproc/win32/proc.c:320:9: [5] (misc) SetSecurityDescriptorDacl:
Never create NULL ACLs; an attacker can set it to Everyone (Deny All
Access), which would even forbid administrator access (CWE-732).
SetSecurityDescriptorDacl(attr->sd, -1, 0, 0);
data/apr-1.7.0/build/aplibtool.c:157:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(value, equal_pos + 1);
data/apr-1.7.0/build/aplibtool.c:159:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(var, arg);
data/apr-1.7.0/build/aplibtool.c:255:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg, arg);
data/apr-1.7.0/build/aplibtool.c:256:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg + (ext - arg), OBJECT_EXT);
data/apr-1.7.0/build/aplibtool.c:264:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg, arg);
data/apr-1.7.0/build/aplibtool.c:272:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newarg, name);
data/apr-1.7.0/build/aplibtool.c:276:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ext, DYNAMIC_LIB_EXT);
data/apr-1.7.0/build/aplibtool.c:279:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ext, STATIC_LIB_EXT);
data/apr-1.7.0/build/aplibtool.c:289:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd_data->stub_name, arg);
data/apr-1.7.0/build/aplibtool.c:327:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg, arg);
data/apr-1.7.0/build/aplibtool.c:328:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newarg, EXE_EXT);
data/apr-1.7.0/build/aplibtool.c:347:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newarg, arg);
data/apr-1.7.0/build/aplibtool.c:349:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newext, shared ? DYNAMIC_LIB_EXT : STATIC_LIB_EXT);
data/apr-1.7.0/build/aplibtool.c:366:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg, arg);
data/apr-1.7.0/build/aplibtool.c:368:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ext, OBJECT_EXT);
data/apr-1.7.0/build/aplibtool.c:494:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(command, cmd_data->arglist[a]);
data/apr-1.7.0/build/aplibtool.c:550:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpdir, lib);
data/apr-1.7.0/build/aplibtool.c:560:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, LIBRARIAN " x ");
data/apr-1.7.0/build/aplibtool.c:570:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(cmd, name);
data/apr-1.7.0/build/aplibtool.c:571:5: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(cmd);
data/apr-1.7.0/build/aplibtool.c:577:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, tmpdir);
data/apr-1.7.0/build/aplibtool.c:579:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(cmd, entry->d_name);
data/apr-1.7.0/build/aplibtool.c:603:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fullname, dirname);
data/apr-1.7.0/build/aplibtool.c:605:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(fullname, entry->d_name);
data/apr-1.7.0/build/aplibtool.c:639:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(def_file, cmd_data->output_name);
data/apr-1.7.0/build/aplibtool.c:655:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, GEN_EXPORTS);
data/apr-1.7.0/build/aplibtool.c:659:17: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(cmd, cmd_data->obj_files[a] );
data/apr-1.7.0/build/aplibtool.c:663:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(cmd, def_file);
data/apr-1.7.0/build/aplibtool.c:678:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(implib_file, cmd_data->stub_name);
data/apr-1.7.0/build/aplibtool.c:685:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(implib_file, STATIC_LIB_EXT);
data/apr-1.7.0/build/aplibtool.c:714:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buffer, name);
data/apr-1.7.0/build/aplibtool.c:741:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newname, newname + 4);
data/apr-1.7.0/build/aplibtool.c:746:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newname + 8, strchr(newname, '.'));
data/apr-1.7.0/build/jlibtool.c:293:12: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
static int vsnprintf( char *str, size_t n, const char *fmt, va_list ap )
data/apr-1.7.0/build/jlibtool.c:304:14: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
res = vfprintf( f, fmt, ap );
data/apr-1.7.0/build/jlibtool.c:307:22: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
res = vsprintf( str, fmt, ap );
data/apr-1.7.0/build/jlibtool.c:311:12: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
static int snprintf( char *str, size_t n, const char *fmt, ... )
data/apr-1.7.0/build/jlibtool.c:317:15: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
res = vsnprintf( str, n, fmt, ap );
data/apr-1.7.0/build/jlibtool.c:391:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newval, cc->vals[i]);
data/apr-1.7.0/build/jlibtool.c:457:20: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
return execvp(argv[0], (char**)argv);
data/apr-1.7.0/build/jlibtool.c:532:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(value, equal_pos + 1);
data/apr-1.7.0/build/jlibtool.c:534:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(var, arg);
data/apr-1.7.0/build/jlibtool.c:660:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newname, newname + 4);
data/apr-1.7.0/build/jlibtool.c:665:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newname + 8, strchr(newname, '.'));
data/apr-1.7.0/build/jlibtool.c:798:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newarg, jlibtool_basename(name));
data/apr-1.7.0/build/jlibtool.c:801:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newarg, name);
data/apr-1.7.0/build/jlibtool.c:808:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newext, STATIC_LIB_EXT);
data/apr-1.7.0/build/jlibtool.c:811:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newext, DYNAMIC_LIB_EXT);
data/apr-1.7.0/build/jlibtool.c:814:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newext, MODULE_LIB_EXT);
data/apr-1.7.0/build/jlibtool.c:861:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ext, OBJECT_EXT);
data/apr-1.7.0/build/jlibtool.c:900:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg, arg);
data/apr-1.7.0/build/jlibtool.c:909:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg+newpathlen, arg+pathlen);
data/apr-1.7.0/build/jlibtool.c:921:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ext, DYNAMIC_LIB_EXT);
data/apr-1.7.0/build/jlibtool.c:928:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ext, STATIC_LIB_EXT);
data/apr-1.7.0/build/jlibtool.c:932:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ext, MODULE_LIB_EXT);
data/apr-1.7.0/build/jlibtool.c:936:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ext, OBJECT_EXT);
data/apr-1.7.0/build/jlibtool.c:989:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg, arg);
data/apr-1.7.0/build/jlibtool.c:1063:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmp, LINKER_FLAG_PREFIX);
data/apr-1.7.0/build/jlibtool.c:1064:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(tmp, RPATH);
data/apr-1.7.0/build/jlibtool.c:1066:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmp, RPATH);
data/apr-1.7.0/build/jlibtool.c:1071:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(tmp, path);
data/apr-1.7.0/build/jlibtool.c:1126:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(exp_argument, install_path);
data/apr-1.7.0/build/jlibtool.c:1131:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(exp_argument+cur_len, DYNAMIC_LIB_EXT);
data/apr-1.7.0/build/jlibtool.c:1134:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(exp_argument+cur_len, current_path);
data/apr-1.7.0/build/jlibtool.c:1139:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(exp_argument+cur_len, DYNAMIC_LIB_EXT);
data/apr-1.7.0/build/jlibtool.c:1164:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newarg, file);
data/apr-1.7.0/build/jlibtool.c:1178:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg, LINKER_FLAG_PREFIX);
data/apr-1.7.0/build/jlibtool.c:1179:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newarg, arg);
data/apr-1.7.0/build/jlibtool.c:1399:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd_data->basename, arg);
data/apr-1.7.0/build/jlibtool.c:1449:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg, arg);
data/apr-1.7.0/build/jlibtool.c:1452:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newarg, EXE_EXT);
data/apr-1.7.0/build/jlibtool.c:1487:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newarg, arg);
data/apr-1.7.0/build/jlibtool.c:1489:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ext, OBJECT_EXT);
data/apr-1.7.0/build/jlibtool.c:1589:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(def_file, cmd_data->output_name);
data/apr-1.7.0/build/jlibtool.c:1605:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, GEN_EXPORTS);
data/apr-1.7.0/build/jlibtool.c:1609:17: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(cmd, cmd_data->obj_files[a] );
data/apr-1.7.0/build/jlibtool.c:1613:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(cmd, def_file);
data/apr-1.7.0/build/jlibtool.c:1628:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(implib_file, cmd_data->basename);
data/apr-1.7.0/build/jlibtool.c:1635:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(implib_file, STATIC_LIB_EXT);
data/apr-1.7.0/build/jlibtool.c:1653:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newpath, foo);
data/apr-1.7.0/build/jlibtool.c:1655:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newpath, relpath);
data/apr-1.7.0/build/jlibtool.c:1685:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmp, c->install_path);
data/apr-1.7.0/build/jlibtool.c:1686:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(tmp, strrchr(c->shared_name.normal, '/'));
data/apr-1.7.0/build/jlibtool.c:1953:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fullname, dirname);
data/apr-1.7.0/build/jlibtool.c:1955:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(fullname, entry->d_name);
data/apr-1.7.0/dso/aix/dso.c:268:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:274:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:287:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, path);
data/apr-1.7.0/dso/aix/dso.c:297:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:305:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:315:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:329:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:389:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, p);
data/apr-1.7.0/dso/aix/dso.c:393:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, p);
data/apr-1.7.0/dso/aix/dso.c:397:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, p);
data/apr-1.7.0/dso/aix/dso.c:401:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, p);
data/apr-1.7.0/dso/aix/dso.c:404:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(atoi(++p)));
data/apr-1.7.0/dso/aix/dso.c:407:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, s);
data/apr-1.7.0/dso/aix/dso.c:427:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, symbol);
data/apr-1.7.0/dso/aix/dso.c:468:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:523:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:532:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:539:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:566:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:599:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:630:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:683:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:692:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/aix/dso.c:699:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errbuf, strerror(errno));
data/apr-1.7.0/dso/os2/dso.c:101:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(message, dso->failed_module);
data/apr-1.7.0/dso/unix/dso.c:193:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(symname2, "_%s", symname);
data/apr-1.7.0/dso/unix/dso.c:221:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(symbol, "_%s", symname);
data/apr-1.7.0/file_io/win32/dir.c:230:13: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
wcscpy(eos, thedir->w.entry->cFileName);
data/apr-1.7.0/file_io/win32/filepath.c:86:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newpath, seperator);
data/apr-1.7.0/file_io/win32/open.c:169:9: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
wcscpy(wfile, wpre);
data/apr-1.7.0/include/apr_file_io.h:845:31: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__((format(printf,2,3)));
data/apr-1.7.0/include/apr_strings.h:183:31: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__((format(printf,2,3)));
data/apr-1.7.0/include/apr_strings.h:281:31: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__((format(printf,3,4)));
data/apr-1.7.0/misc/unix/getopt.c:48:43: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(*os)->errfn = (apr_getopt_err_fn_t*)(fprintf);
data/apr-1.7.0/misc/win32/misc.c:230:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(sprintf)(sbuf, "%p %08x %08x %s() %s:%d\n",
data/apr-1.7.0/misc/win32/misc.c:258:14: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(sprintf)(sbuf, "%p %08x %08x %s(%s) %s:%d\n",
data/apr-1.7.0/network_io/unix/inet_ntop.c:240:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dst, tmp);
data/apr-1.7.0/network_io/unix/sendrecv.c:1104:42: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#error APR has detected sendfile on your system, but nobody has written a
data/apr-1.7.0/network_io/unix/sockaddr.c:997:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, network);
data/apr-1.7.0/passwd/apr_getpass.c:242:20: [4] (misc) getpass:
This function is obsolete and not portable. It was in SUSv2 but removed by
POSIX.2. What it does exactly varies considerably between systems,
particularly in where its prompt is displayed and where it gets its data
(e.g., /dev/tty, stdin, stderr, etc.). In addition, some implementations
overflow buffers. (CWE-676, CWE-120, CWE-20). Make the specific calls to do
exactly what you want. If you continue to use it, or write your own, be
sure to zero the password as soon as possible to avoid leaving the
cleartext password visible in the process' address space.
char *pw_got = getpass(prompt);
data/apr-1.7.0/poll/unix/z_asio.c:123:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
#define DBG_CORE(msg) sprintf(dbg_msg_buff, "% 8d " __FUNCTION__ \
data/apr-1.7.0/poll/unix/z_asio.c:126:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
#define DBG_CORE1(msg, var1) sprintf(dbg_msg_buff, "% 8d " __FUNCTION__ \
data/apr-1.7.0/poll/unix/z_asio.c:129:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
#define DBG_CORE2(msg, var1, var2) sprintf(dbg_msg_buff, "% 8d " __FUNCTION__ \
data/apr-1.7.0/poll/unix/z_asio.c:133:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(dbg_msg_buff, "% 8d " __FUNCTION__ \
data/apr-1.7.0/poll/unix/z_asio.c:137:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(dbg_msg_buff, "% 8d " __FUNCTION__ \
data/apr-1.7.0/random/unix/apr_random.c:54:38: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
#define crypt_crypt(c,out,in) (c)->crypt((c)->date,out,in)
data/apr-1.7.0/shmem/unix/shm.c:108:13: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(m->filename, F_OK)) {
data/apr-1.7.0/shmem/unix/shm.c:132:13: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(m->filename, F_OK)) {
data/apr-1.7.0/tables/apr_skiplist.c:632:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, prefix);
data/apr-1.7.0/tables/apr_tables.c:1165:21: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(val_dst, (*next)->val);
data/apr-1.7.0/test/abts.c:221:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, fmt, args);
data/apr-1.7.0/test/sockperf.c:247:13: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf("%6" APR_TIME_T_FMT, results[i].msecs[j]);
data/apr-1.7.0/test/testfmt.c:27:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, "%" APR_SSIZE_T_FMT, var);
data/apr-1.7.0/test/testfmt.c:38:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, "%" APR_SIZE_T_FMT, var);
data/apr-1.7.0/test/testfmt.c:49:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, "%" APR_TIME_T_FMT, var);
data/apr-1.7.0/test/testfmt.c:60:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, "%" APR_OFF_T_FMT, var);
data/apr-1.7.0/test/testfmt.c:71:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, "%" APR_PID_T_FMT, var);
data/apr-1.7.0/test/testfmt.c:82:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, "%" APR_INT64_T_FMT, var);
data/apr-1.7.0/test/testfmt.c:93:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, "%" APR_UINT64_T_FMT, var);
data/apr-1.7.0/test/testfmt.c:104:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, "%" APR_UINT64_T_HEX_FMT, var);
data/apr-1.7.0/test/testfnmatch.c:171:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "apr_fnmatch(\"%s\", \"%s\", %d) returns %d\n",
data/apr-1.7.0/test/testfnmatch.c:199:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "apr_fnmatch_test(\"%s\") = %d, expected %d\n",
data/apr-1.7.0/test/testglobalmutex.c:106:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "global mutex '%s' failed: %d not %d",
data/apr-1.7.0/test/testtime.c:201:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(libc_str, ctime(&posix_sec));
data/apr-1.7.0/test/testutil.c:33:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s (%d): %s\n", context, rv,
data/apr-1.7.0/threadproc/os2/proc.c:380:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(interpreter, "#!" SHELL_PATH);
data/apr-1.7.0/threadproc/os2/proc.c:406:29: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(interpreter+2, buffer);
data/apr-1.7.0/threadproc/os2/proc.c:410:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(interpreter+2, buffer);
data/apr-1.7.0/threadproc/os2/proc.c:467:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmdline_pos, a);
data/apr-1.7.0/threadproc/os2/proc.c:488:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(env_block_pos, env[e]);
data/apr-1.7.0/threadproc/unix/proc.c:367:17: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(attr->currdir, X_OK) == -1) {
data/apr-1.7.0/threadproc/unix/proc.c:381:17: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(progname, X_OK) == -1) {
data/apr-1.7.0/threadproc/unix/proc.c:559:17: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execv(SHELL_PATH, (char * const *)newargs);
data/apr-1.7.0/threadproc/unix/proc.c:574:13: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execv(progname, (char * const *)args);
data/apr-1.7.0/threadproc/unix/proc.c:582:13: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execvp(progname, (char * const *)args);
data/apr-1.7.0/threadproc/win32/proc.c:705:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pNext, env[i]);
data/apr-1.7.0/threadproc/win32/proc.c:851:18: [4] (access) ImpersonateLoggedOnUser:
If this call fails, the program could fail to drop heightened privileges
(CWE-250). Make sure the return value is checked, and do not continue if a
failure is reported.
if (!ImpersonateLoggedOnUser(attr->user_token)) {
data/apr-1.7.0/build/jlibtool.c:999:21: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
expanded_path = realpath(newarg, expanded_path);
data/apr-1.7.0/dso/win32/dso.c:103:21: [3] (misc) LoadLibraryEx:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
os_handle = LoadLibraryEx(path, NULL, LOAD_WITH_ALTERED_SEARCH_PATH);
data/apr-1.7.0/dso/win32/dso.c:105:25: [3] (misc) LoadLibraryEx:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
os_handle = LoadLibraryEx(path, NULL, 0);
data/apr-1.7.0/file_io/unix/mktemp.c:65:23: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
#define seedrandom(a) srand(a)
data/apr-1.7.0/file_io/unix/mktemp.c:70:22: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
#define arc4random() random()
data/apr-1.7.0/file_io/unix/mktemp.c:71:23: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
#define seedrandom(a) srandom(a)
data/apr-1.7.0/include/apr_random.h:99:59: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void *random,
data/apr-1.7.0/include/apr_random.h:109:57: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void *random,
data/apr-1.7.0/locks/win32/thread_cond.c:52:5: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection(&cv->csection);
data/apr-1.7.0/locks/win32/thread_cond.c:74:5: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&cond->csection);
data/apr-1.7.0/locks/win32/thread_cond.c:105:9: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&cond->csection);
data/apr-1.7.0/locks/win32/thread_cond.c:154:5: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&cond->csection);
data/apr-1.7.0/locks/win32/thread_cond.c:173:5: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&cond->csection);
data/apr-1.7.0/locks/win32/thread_mutex.c:68:13: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection(&(*mutex)->section);
data/apr-1.7.0/locks/win32/thread_mutex.c:90:9: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&mutex->section);
data/apr-1.7.0/misc/netware/rand.c:33:9: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(NXGetSystemTick());
data/apr-1.7.0/misc/unix/env.c:37:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *val = getenv(envvar);
data/apr-1.7.0/misc/win32/misc.c:225:14: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
(InitializeCriticalSection)(&cs);
data/apr-1.7.0/misc/win32/misc.c:233:10: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
(EnterCriticalSection)(&cs);
data/apr-1.7.0/misc/win32/misc.c:240:10: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
(EnterCriticalSection)(&cs);
data/apr-1.7.0/random/unix/apr_random.c:262:61: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
static void apr_random_block(apr_random_t *g,unsigned char *random)
data/apr-1.7.0/random/unix/apr_random.c:266:23: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
hash(g->prng_hash,random,g->H,B_size(g));
data/apr-1.7.0/random/unix/apr_random.c:269:61: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
static void apr_random_bytes(apr_random_t *g,unsigned char *random,
data/apr-1.7.0/random/unix/apr_random.c:282:17: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
memcpy(&random[n],g->randomness+B_size(g)-g->random_bytes,l);
data/apr-1.7.0/random/unix/apr_random.c:289:57: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void *random,
data/apr-1.7.0/random/unix/apr_random.c:294:24: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
apr_random_bytes(g,random,bytes);
data/apr-1.7.0/random/unix/apr_random.c:299:59: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void *random,
data/apr-1.7.0/random/unix/apr_random.c:304:24: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
apr_random_bytes(g,random,bytes);
data/apr-1.7.0/test/nw_misc.c:11:7: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("_IN_NETWARE_BASH_") == NULL) {
data/apr-1.7.0/test/testskiplist.c:50:5: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand((unsigned int)(((now >> 32) ^ now) & 0xffffffff));
data/apr-1.7.0/threadproc/win32/proc.c:430:9: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection(&proc_lock);
data/apr-1.7.0/threadproc/win32/proc.c:541:26: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *shellcmd = getenv("COMSPEC");
data/apr-1.7.0/threadproc/win32/proc.c:583:30: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *shellcmd = getenv("COMSPEC");
data/apr-1.7.0/threadproc/win32/proc.c:791:9: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&proc_lock);
data/apr-1.7.0/build/aplibtool.c:60:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *arglist[1024];
data/apr-1.7.0/build/aplibtool.c:66:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *tmp_dirs[1024];
data/apr-1.7.0/build/aplibtool.c:68:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *obj_files[1024];
data/apr-1.7.0/build/aplibtool.c:100:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fopen(cmd_data.stub_name, "w");
data/apr-1.7.0/build/aplibtool.c:151:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[50];
data/apr-1.7.0/build/aplibtool.c:152:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[500];
data/apr-1.7.0/build/aplibtool.c:266:9: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(newarg, ".libs/");
data/apr-1.7.0/build/aplibtool.c:290:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(strrchr(cmd_data->stub_name, '.') + 1, "lo");
data/apr-1.7.0/build/aplibtool.c:341:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(newarg, ".libs/");
data/apr-1.7.0/build/aplibtool.c:481:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *args[4];
data/apr-1.7.0/build/aplibtool.c:543:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpdir[1024];
data/apr-1.7.0/build/aplibtool.c:544:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char savewd[1024];
data/apr-1.7.0/build/aplibtool.c:545:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[1024];
data/apr-1.7.0/build/aplibtool.c:551:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmpdir, ".exploded");
data/apr-1.7.0/build/aplibtool.c:569:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(cmd, "../");
data/apr-1.7.0/build/aplibtool.c:594:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullname[1024];
data/apr-1.7.0/build/aplibtool.c:628:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char def_file[1024];
data/apr-1.7.0/build/aplibtool.c:629:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char implib_file[1024];
data/apr-1.7.0/build/aplibtool.c:632:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *export_args[1024];
data/apr-1.7.0/build/aplibtool.c:640:9: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(def_file, ".def");
data/apr-1.7.0/build/aplibtool.c:641:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
hDef = fopen(def_file, "w");
data/apr-1.7.0/build/aplibtool.c:662:13: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(cmd, ">>");
data/apr-1.7.0/build/aplibtool.c:677:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(implib_file, ".libs/");
data/apr-1.7.0/build/aplibtool.c:700:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/apr-1.7.0/build/jlibtool.c:298:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen("/dev/null","w");
data/apr-1.7.0/build/jlibtool.c:474:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *spawn_args[4];
data/apr-1.7.0/build/jlibtool.c:526:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[50];
data/apr-1.7.0/build/jlibtool.c:527:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[500];
data/apr-1.7.0/build/jlibtool.c:791:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(newarg, ".libs/");
data/apr-1.7.0/build/jlibtool.c:850:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newarg, arg, arglen);
data/apr-1.7.0/build/jlibtool.c:905:9: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(newarg, ".libs/");
data/apr-1.7.0/build/jlibtool.c:965:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(arg,"r");
data/apr-1.7.0/build/jlibtool.c:993:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(newarg, ".libs");
data/apr-1.7.0/build/jlibtool.c:1163:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(newarg, "-l");
data/apr-1.7.0/build/jlibtool.c:1188:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char savewd[PATH_MAX];
data/apr-1.7.0/build/jlibtool.c:1192:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *lib_args[4];
data/apr-1.7.0/build/jlibtool.c:1400:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(strrchr(cmd_data->basename, '.') + 1, "lo");
data/apr-1.7.0/build/jlibtool.c:1578:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char def_file[1024];
data/apr-1.7.0/build/jlibtool.c:1579:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char implib_file[1024];
data/apr-1.7.0/build/jlibtool.c:1582:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *export_args[1024];
data/apr-1.7.0/build/jlibtool.c:1590:9: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(def_file, ".def");
data/apr-1.7.0/build/jlibtool.c:1591:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
hDef = fopen(def_file, "w");
data/apr-1.7.0/build/jlibtool.c:1612:13: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(cmd, ">>");
data/apr-1.7.0/build/jlibtool.c:1627:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(implib_file, ".libs/");
data/apr-1.7.0/build/jlibtool.c:1649:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char foo[PATH_MAX], *newpath;
data/apr-1.7.0/build/jlibtool.c:1824:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *lib_args[3], *static_lib_name;
data/apr-1.7.0/build/jlibtool.c:1878:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *lib_args[3];
data/apr-1.7.0/build/jlibtool.c:1944:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullname[1024];
data/apr-1.7.0/build/jlibtool.c:1975:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *touch_args[3];
data/apr-1.7.0/build/jlibtool.c:1998:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f=fopen(cmd_data->fake_output_name,"w");
data/apr-1.7.0/dso/aix/dso.c:229:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char errbuf[BUFSIZ];
data/apr-1.7.0/dso/aix/dso.c:267:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "calloc: ");
data/apr-1.7.0/dso/aix/dso.c:273:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "strdup: ");
data/apr-1.7.0/dso/aix/dso.c:286:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "dlopen: ");
data/apr-1.7.0/dso/aix/dso.c:288:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf, ": ");
data/apr-1.7.0/dso/aix/dso.c:295:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *tmp[BUFSIZ / sizeof(char *)];
data/apr-1.7.0/dso/aix/dso.c:314:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "loadbind: ");
data/apr-1.7.0/dso/aix/dso.c:328:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "loadbind: ");
data/apr-1.7.0/dso/aix/dso.c:383:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
switch (atoi(s)) {
data/apr-1.7.0/dso/aix/dso.c:385:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf, "to many errors");
data/apr-1.7.0/dso/aix/dso.c:388:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf, "can't load library");
data/apr-1.7.0/dso/aix/dso.c:392:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf, "can't find symbol");
data/apr-1.7.0/dso/aix/dso.c:396:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf, "bad RLD");
data/apr-1.7.0/dso/aix/dso.c:400:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf, "bad exec format in");
data/apr-1.7.0/dso/aix/dso.c:404:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
strcat(errbuf, strerror(atoi(++p)));
data/apr-1.7.0/dso/aix/dso.c:426:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "dlsym: undefined symbol ");
data/apr-1.7.0/dso/aix/dso.c:522:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: ");
data/apr-1.7.0/dso/aix/dso.c:531:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: ");
data/apr-1.7.0/dso/aix/dso.c:538:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: ");
data/apr-1.7.0/dso/aix/dso.c:565:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: ");
data/apr-1.7.0/dso/aix/dso.c:571:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: bad magic");
data/apr-1.7.0/dso/aix/dso.c:582:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: cannot read data section header");
data/apr-1.7.0/dso/aix/dso.c:588:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: cannot read loader section header");
data/apr-1.7.0/dso/aix/dso.c:598:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: ");
data/apr-1.7.0/dso/aix/dso.c:605:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: cannot seek to loader section");
data/apr-1.7.0/dso/aix/dso.c:612:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: cannot read loader section");
data/apr-1.7.0/dso/aix/dso.c:629:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "readExports: ");
data/apr-1.7.0/dso/aix/dso.c:643:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpsym[SYMNMLEN + 1];
data/apr-1.7.0/dso/aix/dso.c:682:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "findMain: ");
data/apr-1.7.0/dso/aix/dso.c:691:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "findMain: ");
data/apr-1.7.0/dso/aix/dso.c:698:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf, "findMain: ");
data/apr-1.7.0/dso/os2/dso.c:44:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char failed_module[200];
data/apr-1.7.0/dso/os2/dso.c:96:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/apr-1.7.0/dso/os2/dso.c:100:9: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(message, " (");
data/apr-1.7.0/dso/win32/dso.c:90:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fspec[APR_PATH_MAX], *p = fspec;
data/apr-1.7.0/encoding/apr_encode.c:34:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char pr2six[256] =
data/apr-1.7.0/encoding/apr_encode.c:75:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char pr2five[256] =
data/apr-1.7.0/encoding/apr_encode.c:116:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char pr2fivehex[256] =
data/apr-1.7.0/encoding/apr_encode.c:157:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char pr2two[256] =
data/apr-1.7.0/encoding/apr_escape.c:128:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char xstr[5];
data/apr-1.7.0/encoding/apr_escape.c:541:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d, ">", 4);
data/apr-1.7.0/encoding/apr_escape.c:547:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d, "<", 4);
data/apr-1.7.0/encoding/apr_escape.c:553:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d, "&", 5);
data/apr-1.7.0/encoding/apr_escape.c:559:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d, """, 6);
data/apr-1.7.0/encoding/apr_escape.c:565:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d, "'", 6);
data/apr-1.7.0/encoding/apr_escape.c:616:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8];
data/apr-1.7.0/encoding/apr_escape.c:670:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char * const entlist[MAXENTLEN + 1] =
data/apr-1.7.0/encoding/apr_escape.c:740:63: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
*d = ENCODE_TO_ASCII(((const unsigned char *) ents)[j]);
data/apr-1.7.0/file_io/netware/filestat.c:234:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char poolname[50];
data/apr-1.7.0/file_io/netware/filesys.c:70:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[APR_PATH_MAX];
data/apr-1.7.0/file_io/netware/mktemp.c:34:10: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fd = mkstemp(template);
data/apr-1.7.0/file_io/os2/filedup.c:97:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((*new_file)->buffer, old_file->buffer, old_file->bufpos);
data/apr-1.7.0/file_io/os2/filedup.c:100:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((*new_file)->buffer, old_file->buffer, old_file->dataRead);
data/apr-1.7.0/file_io/os2/filesys.c:35:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char c_is_fnchar[256] =
data/apr-1.7.0/file_io/os2/filesys.c:69:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[APR_PATH_MAX];
data/apr-1.7.0/file_io/os2/filesys.c:112:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[APR_PATH_MAX];
data/apr-1.7.0/file_io/os2/filesys.c:120:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(path+1, ":\\");
data/apr-1.7.0/file_io/os2/pipe.c:33:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pipename[50];
data/apr-1.7.0/file_io/os2/pipe.c:35:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pipename, "/pipe/%d.%d", getpid(), id++);
data/apr-1.7.0/file_io/os2/readwrite.c:75:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pos, thefile->buffer + thefile->bufpos, blocksize);
data/apr-1.7.0/file_io/os2/readwrite.c:157:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(thefile->buffer + thefile->bufpos, pos, blocksize);
data/apr-1.7.0/file_io/unix/copy.c:64:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[COPY_BUFSIZ];
data/apr-1.7.0/file_io/unix/dir.c:243:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fspec[APR_PATH_MAX];
data/apr-1.7.0/file_io/unix/filedup.c:150:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((*new_file)->buffer, old_file->buffer, old_file->bufpos);
data/apr-1.7.0/file_io/unix/filedup.c:153:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((*new_file)->buffer, old_file->buffer, old_file->dataRead);
data/apr-1.7.0/file_io/unix/filepath.c:40:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[APR_PATH_MAX];
data/apr-1.7.0/file_io/unix/filepath.c:178:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, rootpath, rootlen);
data/apr-1.7.0/file_io/unix/filepath.c:231:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path + pathlen, "../", *next ? 3 : 2);
data/apr-1.7.0/file_io/unix/filepath.c:258:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path + pathlen, addpath, seglen);
data/apr-1.7.0/file_io/unix/filepath_util.c:35:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char separator_string[2] = { '\0', '\0' };
data/apr-1.7.0/file_io/unix/filepath_util.c:106:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, part, part_size);
data/apr-1.7.0/file_io/unix/fullrw.c:98:50: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
rv = apr_file_write_full(thefile, (const char *)vec[i].iov_base + amt,
data/apr-1.7.0/file_io/unix/mktemp.c:190:10: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fd = mkstemp(template);
data/apr-1.7.0/file_io/unix/open.c:173:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(fname, oflags, 0666);
data/apr-1.7.0/file_io/unix/open.c:176:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(fname, oflags, apr_unix_perms2mode(perm));
data/apr-1.7.0/file_io/unix/readwrite.c:72:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pos, thefile->buffer + thefile->bufpos, blocksize);
data/apr-1.7.0/file_io/unix/readwrite.c:176:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(thefile->buffer + thefile->bufpos, pos, blocksize);
data/apr-1.7.0/file_io/win32/dir.c:59:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((*new)->dirname, dirname, len);
data/apr-1.7.0/file_io/win32/dir.c:245:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fspec[APR_PATH_MAX];
data/apr-1.7.0/file_io/win32/filedup.c:199:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((*new_file)->buffer, old_file->buffer, old_file->bufpos);
data/apr-1.7.0/file_io/win32/filedup.c:202:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((*new_file)->buffer, old_file->buffer, old_file->dataRead);
data/apr-1.7.0/file_io/win32/filepath.c:48:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seperator[2] = { 0, 0};
data/apr-1.7.0/file_io/win32/filepath.c:49:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server[APR_PATH_MAX+1];
data/apr-1.7.0/file_io/win32/filepath.c:50:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char volume[APR_PATH_MAX+1];
data/apr-1.7.0/file_io/win32/filepath.c:51:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[APR_PATH_MAX+1];
data/apr-1.7.0/file_io/win32/filepath.c:121:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seperator[2];
data/apr-1.7.0/file_io/win32/filepath.c:358:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[APR_PATH_MAX]; /* isn't null term */
data/apr-1.7.0/file_io/win32/filepath.c:493:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, addroot, pathlen);
data/apr-1.7.0/file_io/win32/filepath.c:518:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, addroot, pathlen);
data/apr-1.7.0/file_io/win32/filepath.c:538:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, baseroot, pathlen);
data/apr-1.7.0/file_io/win32/filepath.c:545:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, addroot, pathlen);
data/apr-1.7.0/file_io/win32/filepath.c:574:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, baseroot, rootlen);
data/apr-1.7.0/file_io/win32/filepath.c:575:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path + rootlen, basepath, baselen);
data/apr-1.7.0/file_io/win32/filepath.c:584:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, addroot, pathlen);
data/apr-1.7.0/file_io/win32/filepath.c:615:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, baseroot, rootlen);
data/apr-1.7.0/file_io/win32/filepath.c:616:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path + rootlen, basepath, baselen);
data/apr-1.7.0/file_io/win32/filepath.c:773:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path + pathlen, addpath, seglen + i);
data/apr-1.7.0/file_io/win32/filepath.c:794:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, testroot, pathlen);
data/apr-1.7.0/file_io/win32/filepath.c:811:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path + pathlen, addpath, seglen + i);
data/apr-1.7.0/file_io/win32/filepath.c:880:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path + keptlen, finfo.name, namelen);
data/apr-1.7.0/file_io/win32/filepath.c:888:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path + keptlen, finfo.name, namelen);
data/apr-1.7.0/file_io/win32/filepath.c:905:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path + keptlen, finfo.name, namelen);
data/apr-1.7.0/file_io/win32/filestat.c:649:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpname[APR_FILE_MAX * 3 + 1];
data/apr-1.7.0/file_io/win32/filestat.c:740:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpname[APR_FILE_MAX];
data/apr-1.7.0/file_io/win32/filesys.c:49:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char apr_c_is_fnchar[256] =
data/apr-1.7.0/file_io/win32/filesys.c:91:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[APR_PATH_MAX];
data/apr-1.7.0/file_io/win32/filesys.c:102:9: [2] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer. Risk is low because the source is a constant string.
wcscpy(wdrive, L"D:.");
data/apr-1.7.0/file_io/win32/filesys.c:114:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char drivestr[4];
data/apr-1.7.0/file_io/win32/filesys.c:162:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[APR_PATH_MAX];
data/apr-1.7.0/file_io/win32/filesys.c:176:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[APR_PATH_MAX];
data/apr-1.7.0/file_io/win32/open.c:73:13: [2] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer. Risk is low because the source is a constant string.
wcscpy (retstr, L"\\\\?\\");
data/apr-1.7.0/file_io/win32/open.c:83:13: [2] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer. Risk is low because the source is a constant string.
wcscpy (retstr, L"\\\\?\\UNC\\");
data/apr-1.7.0/file_io/win32/open.c:206:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nfile, pre, r);
data/apr-1.7.0/file_io/win32/open.c:207:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nfile + r, file, n);
data/apr-1.7.0/file_io/win32/pipe.c:139:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rand[8];
data/apr-1.7.0/file_io/win32/pipe.c:149:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[sizeof FMT_PIPE_NAME + 2 * sizeof(pid)
data/apr-1.7.0/file_io/win32/readwrite.c:220:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pos, thefile->buffer + thefile->bufpos, blocksize);
data/apr-1.7.0/file_io/win32/readwrite.c:292:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(thefile->buffer + thefile->bufpos, pos, blocksize);
data/apr-1.7.0/include/apr_general.h:156:24: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define memmove(a,b,c) bcopy(b,a,c)
data/apr-1.7.0/include/apr_time.h:39:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
APR_DECLARE_DATA extern const char apr_month_snames[12][4];
data/apr-1.7.0/include/apr_time.h:41:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
APR_DECLARE_DATA extern const char apr_day_snames[7][4];
data/apr-1.7.0/include/arch/os2/apr_arch_file_io.h:76:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char c_is_fnchar[256];
data/apr-1.7.0/include/arch/win32/apr_arch_file_io.h:221:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char apr_c_is_fnchar[256];
data/apr-1.7.0/locks/unix/proc_mutex.c:125:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char semname[32];
data/apr-1.7.0/locks/unix/proc_mutex.c:590:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("/dev/zero", O_RDWR);
data/apr-1.7.0/memory/unix/apr_pools.c:1317:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(node->first_avail, active->first_avail, cur_len);
data/apr-1.7.0/misc/netware/rand.c:30:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union { int x; char y[4]; } u;
data/apr-1.7.0/misc/unix/errorcodes.c:155:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[200];
data/apr-1.7.0/misc/unix/errorcodes.c:156:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char message[HUGE_STRING_LEN];
data/apr-1.7.0/misc/unix/errorcodes.c:184:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(result, "OS/2 error %d", err);
data/apr-1.7.0/misc/unix/errorcodes.c:401:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char err[32];
data/apr-1.7.0/misc/unix/errorcodes.c:402:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(err, "Native Error #%d", statcode);
data/apr-1.7.0/misc/unix/getopt.c:59:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(argv_buff, argv, argc * sizeof(const char *));
data/apr-1.7.0/misc/unix/rand.c:89:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(uuid_data, &g, sizeof(uuid_t));
data/apr-1.7.0/misc/unix/rand.c:102:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(uuid_data, g, sizeof(uuid_t));
data/apr-1.7.0/misc/unix/rand.c:137:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char req[2], resp[255];
data/apr-1.7.0/misc/unix/rand.c:149:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(addr.sun_path, *egdsockname, egd_path_len);
data/apr-1.7.0/misc/unix/rand.c:195:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(curbuf, resp, srv);
data/apr-1.7.0/misc/unix/rand.c:243:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(DEV_RANDOM, O_RDONLY)) == -1)
data/apr-1.7.0/misc/win32/apr_app.c:62:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_environ, env, (dupenv + 1) * sizeof (char *));
data/apr-1.7.0/misc/win32/misc.c:44:32: [2] (integer) _wtoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
servpack = _wtoi(pservpack);
data/apr-1.7.0/misc/win32/misc.c:46:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
servpack = atoi(pservpack);
data/apr-1.7.0/misc/win32/misc.c:221:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(strchr(sbuf, '\0'), ".%u",
data/apr-1.7.0/misc/win32/start.c:83:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*env, pstrs, len * sizeof(char));
data/apr-1.7.0/misc/win32/start.c:140:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((void*)*env, _environ, (dupenv + 1) * sizeof (char *));
data/apr-1.7.0/network_io/os2/os2calls.c:53:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errorstr[200];
data/apr-1.7.0/network_io/os2/sendrecv.c:123:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmpvec, vec, sizeof(struct iovec) * nv_tosend);
data/apr-1.7.0/network_io/os2/sockets.c:269:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(*apr_sock)->local_addr->sa.sin,
data/apr-1.7.0/network_io/os2/sockets.c:279:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(*apr_sock)->remote_addr->sa.sin,
data/apr-1.7.0/network_io/unix/inet_ntop.c:149:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"], *tp;
data/apr-1.7.0/network_io/unix/inet_pton.c:110:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tmp[INADDRSZ], *tp;
data/apr-1.7.0/network_io/unix/inet_pton.c:140:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, tmp, INADDRSZ);
data/apr-1.7.0/network_io/unix/inet_pton.c:163:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tmp[IN6ADDRSZ], *tp, *endp, *colonp;
data/apr-1.7.0/network_io/unix/inet_pton.c:237:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, tmp, IN6ADDRSZ);
data/apr-1.7.0/network_io/unix/sendrecv.c:725:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(headerbuf, hdtr->headers[i].iov_base,
data/apr-1.7.0/network_io/unix/sendrecv.c:750:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(trailerbuf, hdtr->trailers[i].iov_base,
data/apr-1.7.0/network_io/unix/sendrecv.c:861:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)hbuf + ptr, hdtr->headers[i].iov_base,
data/apr-1.7.0/network_io/unix/sendrecv.c:887:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)tbuf + ptr, hdtr->trailers[i].iov_base,
data/apr-1.7.0/network_io/unix/sockaddr.c:144:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scbuf[IF_NAMESIZE], *p = buf + strlen(buf);
data/apr-1.7.0/network_io/unix/sockaddr.c:155:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, scbuf, strlen(scbuf) + 1);
data/apr-1.7.0/network_io/unix/sockaddr.c:264:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
big_port = atoi(str);
data/apr-1.7.0/network_io/unix/sockaddr.c:276:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
big_port = atoi(ch + 1);
data/apr-1.7.0/network_io/unix/sockaddr.c:465:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&new_sa->sa, ai->ai_addr, ai->ai_addrlen);
data/apr-1.7.0/network_io/unix/sockaddr.c:544:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[GETHOSTBYNAME_BUFLEN];
data/apr-1.7.0/network_io/unix/sockaddr.c:550:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *addr_list[2];
data/apr-1.7.0/network_io/unix/sockaddr.c:739:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmphostname[NI_MAXHOST];
data/apr-1.7.0/network_io/unix/sockaddr.c:741:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmphostname[256];
data/apr-1.7.0/network_io/unix/sockaddr.c:814:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[GETHOSTBYNAME_BUFLEN];
data/apr-1.7.0/network_io/unix/sockaddr.c:878:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/apr-1.7.0/network_io/unix/sockaddr.c:961:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char inaddr_any[
data/apr-1.7.0/network_io/unix/sockaddr.c:994:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[sizeof "255.255.255.255"];
data/apr-1.7.0/network_io/unix/sockaddr.c:1025:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
octet = atoi(s);
data/apr-1.7.0/network_io/unix/sockets.c:36:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char generic_inaddr_any[GENERIC_INADDR_ANY_LEN] = {0};
data/apr-1.7.0/network_io/unix/sockets.c:521:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(*apr_sock)->local_addr->sa.sin,
data/apr-1.7.0/network_io/unix/sockets.c:534:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(*apr_sock)->remote_addr->sa.sin,
data/apr-1.7.0/network_io/win32/sendrecv.c:236:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, iovec[i].iov_base, iovec[i].iov_len);
data/apr-1.7.0/network_io/win32/sendrecv.c:272:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdtrbuf[4096];
data/apr-1.7.0/network_io/win32/sockets.c:27:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char generic_inaddr_any[16] = {0}; /* big enough for IPv4 or IPv6 */
data/apr-1.7.0/network_io/win32/sockets.c:260:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&(*new)->remote_addr->sa, &sa, salen);
data/apr-1.7.0/network_io/win32/sockets.c:478:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(*apr_sock)->local_addr->sa.sin,
data/apr-1.7.0/network_io/win32/sockets.c:489:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(*apr_sock)->remote_addr->sa.sin,
data/apr-1.7.0/passwd/apr_getpass.c:96:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char password[MAX_STRING_LEN];
data/apr-1.7.0/passwd/apr_getpass.c:119:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char password[128];
data/apr-1.7.0/passwd/apr_getpass.c:180:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char password[MAX_STRING_LEN];
data/apr-1.7.0/poll/os2/pollset.c:222:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pollresult, pollset->pollset, sizeof(int) * pollset->num_total);
data/apr-1.7.0/poll/os2/pollset.c:267:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[16];
data/apr-1.7.0/poll/unix/select.c:375:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&readset, &(pollset->p->readset), sizeof(fd_set));
data/apr-1.7.0/poll/unix/select.c:376:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&writeset, &(pollset->p->writeset), sizeof(fd_set));
data/apr-1.7.0/poll/unix/select.c:377:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&exceptset, &(pollset->p->exceptset), sizeof(fd_set));
data/apr-1.7.0/poll/unix/wakeup.c:139:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rb[512];
data/apr-1.7.0/poll/unix/z_asio.c:119:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
#define DBG_BUFF char dbg_msg_buff[256];
data/apr-1.7.0/random/unix/apr_random.c:215:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(g->H_waiting,g->H,H_size(g));
data/apr-1.7.0/random/unix/apr_random.c:222:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(g->H,g->H_waiting,H_size(g));
data/apr-1.7.0/random/unix/apr_random.c:241:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(np,p->pool,p->bytes);
data/apr-1.7.0/random/unix/apr_random.c:282:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&random[n],g->randomness+B_size(g)-g->random_bytes,l);
data/apr-1.7.0/random/unix/sha2.c:106:33: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MEMCPY_BCOPY(d,s,l) memcpy((d), (s), (l))
data/apr-1.7.0/random/unix/sha2.c:110:33: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MEMCPY_BCOPY(d,s,l) bcopy((s), (d), (l))
data/apr-1.7.0/random/unix/sha2.c:522:59: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char* apr__SHA256_Data(const sha2_byte* data, size_t len, char digest[SHA256_DIGEST_STRING_LENGTH]) {
data/apr-1.7.0/shmem/beos/shm.c:44:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char shname[B_OS_NAME_LENGTH];
data/apr-1.7.0/strings/apr_cpystrn.c:240:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sdup, str, len);
data/apr-1.7.0/strings/apr_fnmatch.c:196:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char dummystring[2] = {' ', 0};
data/apr-1.7.0/strings/apr_snprintf.c:180:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[NDIG];
data/apr-1.7.0/strings/apr_snprintf.c:470:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p + 1, ipaddr_str, sub_len);
data/apr-1.7.0/strings/apr_snprintf.c:476:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, ipaddr_str, sub_len);
data/apr-1.7.0/strings/apr_snprintf.c:523:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[NDIG];
data/apr-1.7.0/strings/apr_snprintf.c:535:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, p, *len + 1);
data/apr-1.7.0/strings/apr_snprintf.c:571:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[EXPONENT_LENGTH]; /* for exponent conversion */
data/apr-1.7.0/strings/apr_snprintf.c:708:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char num_buf[NUM_BUF_SIZE];
data/apr-1.7.0/strings/apr_snprintf.c:709:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char char_buf[2]; /* for printing %% and %<unknown> */
data/apr-1.7.0/strings/apr_snprintf.c:1248:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[5];
data/apr-1.7.0/strings/apr_strings.c:94:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(res, s, n);
data/apr-1.7.0/strings/apr_strings.c:107:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(res, s, n);
data/apr-1.7.0/strings/apr_strings.c:119:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(res, m, n);
data/apr-1.7.0/strings/apr_strings.c:164:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, argp, len);
data/apr-1.7.0/strings/apr_strings.c:204:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src->iov_base, src->iov_len);
data/apr-1.7.0/strings/apr_strings.c:439:16: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
return strcpy(buf, " - ");
data/apr-1.7.0/strings/apr_strings.c:443:20: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
return strcpy(buf, "****");
data/apr-1.7.0/strings/apr_strings.c:457:24: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
return strcpy(buf, "****");
data/apr-1.7.0/strings/apr_strings.c:463:20: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
return strcpy(buf, "****");
data/apr-1.7.0/tables/apr_skiplist.c:163:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, q->data, q->pos * sizeof(*data));
data/apr-1.7.0/tables/apr_tables.c:115:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_data, arr->elts, arr->nalloc * arr->elt_size);
data/apr-1.7.0/tables/apr_tables.c:134:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_data, arr->elts, arr->nalloc * arr->elt_size);
data/apr-1.7.0/tables/apr_tables.c:157:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_data, dst->elts, dst->nalloc * elt_size);
data/apr-1.7.0/tables/apr_tables.c:163:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst->elts + dst->nelts * elt_size, src->elts,
data/apr-1.7.0/tables/apr_tables.c:175:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(res->elts, arr->elts, arr->elt_size * arr->nelts);
data/apr-1.7.0/tables/apr_tables.c:266:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, *strpp, len);
data/apr-1.7.0/tables/apr_tables.c:426:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new->a.elts, t->a.elts, t->a.nelts * sizeof(apr_table_entry_t));
data/apr-1.7.0/tables/apr_tables.c:428:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new->index_first, t->index_first, sizeof(int) * TABLE_HASH_SIZE);
data/apr-1.7.0/tables/apr_tables.c:429:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new->index_last, t->index_last, sizeof(int) * TABLE_HASH_SIZE);
data/apr-1.7.0/tables/apr_tables.c:1215:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(t->index_first,s->index_first,sizeof(int) * TABLE_HASH_SIZE);
data/apr-1.7.0/tables/apr_tables.c:1216:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(t->index_last, s->index_last, sizeof(int) * TABLE_HASH_SIZE);
data/apr-1.7.0/test/abts.c:22:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char status[ABTS_STAT_SIZE] = {'|', '/', '-', '|', '\\', '-'};
data/apr-1.7.0/test/abts.c:119:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
subsuite->name = memcpy(calloc(p - suite_name + 1, 1),
data/apr-1.7.0/test/echod.c:127:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
theport = atoi(argv[1]);
data/apr-1.7.0/test/internal/testregex.c:43:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
iters = atoi( argv[3]);
data/apr-1.7.0/test/internal/testregex.c:55:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[2000];
data/apr-1.7.0/test/internal/testucs.c:26:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char n[8];
data/apr-1.7.0/test/internal/testucs.c:28:5: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t w[4];
data/apr-1.7.0/test/internal/testucs.c:81:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[80], *t = x;
data/apr-1.7.0/test/internal/testucs.c:84:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
t += sprintf(t, "%02X ", f->n[i]);
data/apr-1.7.0/test/internal/testucs.c:87:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
t += sprintf(t, " %02X", l->n[i]);
data/apr-1.7.0/test/internal/testucs.c:92:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
t += sprintf(t, "%04X ", f->w[i]);
data/apr-1.7.0/test/internal/testucs.c:95:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
t += sprintf(t, " %04X", l->w[i]);
data/apr-1.7.0/test/internal/testucs.c:120:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&f, &s, sizeof(s));
data/apr-1.7.0/test/internal/testucs.c:128:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&f, &s, sizeof(s));
data/apr-1.7.0/test/internal/testucs.c:131:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&l, &s, sizeof(s));
data/apr-1.7.0/test/internal/testucs.c:172:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&f, &s, sizeof(s));
data/apr-1.7.0/test/internal/testucs.c:180:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&f, &s, sizeof(s));
data/apr-1.7.0/test/internal/testucs.c:183:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&l, &s, sizeof(s));
data/apr-1.7.0/test/mod_test.c:19:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void print_hello(char str[256]);
data/apr-1.7.0/test/mod_test.c:22:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void print_hello(char str[256])
data/apr-1.7.0/test/occhild.c:11:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/apr-1.7.0/test/proc_child.c:13:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/apr-1.7.0/test/readchild.c:26:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/apr-1.7.0/test/sendfile.c:61:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[120];
data/apr-1.7.0/test/sendfile.c:93:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[120];
data/apr-1.7.0/test/sendfile.c:149:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *args[3];
data/apr-1.7.0/test/sendfile.c:188:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[120];
data/apr-1.7.0/test/sendfile.c:493:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char responsebuf[1024];
data/apr-1.7.0/test/sendfile.c:523:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[120];
data/apr-1.7.0/test/sockchild.c:55:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datarecv[STRLEN];
data/apr-1.7.0/test/testargs.c:50:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[8196];
data/apr-1.7.0/test/testargs.c:80:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[8196];
data/apr-1.7.0/test/testargs.c:112:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[8196];
data/apr-1.7.0/test/testargs.c:141:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[8196];
data/apr-1.7.0/test/testargs.c:170:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[8196];
data/apr-1.7.0/test/testargs.c:199:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[8196];
data/apr-1.7.0/test/testdso.c:58:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[256];
data/apr-1.7.0/test/testdso.c:72:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void (*function)(char str[256]);
data/apr-1.7.0/test/testdso.c:73:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char teststr[256];
data/apr-1.7.0/test/testdso.c:74:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[256];
data/apr-1.7.0/test/testdso.c:99:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[256];
data/apr-1.7.0/test/testdso.c:122:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[256];
data/apr-1.7.0/test/testdso.c:144:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[256];
data/apr-1.7.0/test/testdso.c:158:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void (*function)(char str[256]);
data/apr-1.7.0/test/testdso.c:159:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char teststr[256];
data/apr-1.7.0/test/testdso.c:160:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[256];
data/apr-1.7.0/test/testdso.c:185:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[256];
data/apr-1.7.0/test/testdso.c:208:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[256];
data/apr-1.7.0/test/testdup.c:63:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[50];
data/apr-1.7.0/test/testdup.c:142:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[50];
data/apr-1.7.0/test/testfile.c:463:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[APR_BUFFERSIZE * 2];
data/apr-1.7.0/test/testfile.c:509:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8192];
data/apr-1.7.0/test/testfile.c:1081:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(to_write + HUGE_STRING_LEN, "42");
data/apr-1.7.0/test/testfile.c:1098:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[APR_BUFFERSIZE];
data/apr-1.7.0/test/testfile.c:1129:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2];
data/apr-1.7.0/test/testfile.c:1175:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128] = { 0 };
data/apr-1.7.0/test/testflock.c:30:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *args[2];
data/apr-1.7.0/test/testfmt.c:24:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/apr-1.7.0/test/testfmt.c:35:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/apr-1.7.0/test/testfmt.c:46:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/apr-1.7.0/test/testfmt.c:57:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/apr-1.7.0/test/testfmt.c:68:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/apr-1.7.0/test/testfmt.c:79:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/apr-1.7.0/test/testfmt.c:90:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/apr-1.7.0/test/testfmt.c:101:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/apr-1.7.0/test/testfmt.c:112:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/apr-1.7.0/test/testfmt.c:133:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ebuf[150], sbuf[150], *s;
data/apr-1.7.0/test/testfnmatch.c:147:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[80];
data/apr-1.7.0/test/testfnmatch.c:197:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/apr-1.7.0/test/testglobalmutex.c:28:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *args[3];
data/apr-1.7.0/test/testglobalmutex.c:105:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/apr-1.7.0/test/testhash.c:199:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char StrArray[MAX_DEPTH][MAX_LTH];
data/apr-1.7.0/test/testhash.c:337:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char StrArray[MAX_DEPTH][MAX_LTH];
data/apr-1.7.0/test/testhash.c:371:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char StrArray[MAX_DEPTH][MAX_LTH];
data/apr-1.7.0/test/testhash.c:415:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char StrArray[MAX_DEPTH][MAX_LTH];
data/apr-1.7.0/test/testipsub.c:154:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/apr-1.7.0/test/testipsub.c:162:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/apr-1.7.0/test/testlockperf.c:285:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[200];
data/apr-1.7.0/test/testlockperf.c:306:27: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
max_counter = atol(optarg);
data/apr-1.7.0/test/testmmap.c:38:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char test_string[256]; /* read from the datafile */
data/apr-1.7.0/test/testmutexscope.c:127:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[256];
data/apr-1.7.0/test/testnames.c:42:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[256];
data/apr-1.7.0/test/testnames.c:144:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[256];
data/apr-1.7.0/test/testnames.c:159:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[256];
data/apr-1.7.0/test/testnames.c:186:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char current_dir[1024];
data/apr-1.7.0/test/testnames.c:187:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char current_dir_on_C[1024];
data/apr-1.7.0/test/testnames.c:222:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char short_path[MAX_PATH+1];
data/apr-1.7.0/test/testnames.c:270:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[256];
data/apr-1.7.0/test/testoc.c:26:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char reasonstr[256];
data/apr-1.7.0/test/testoc.c:62:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *args[3];
data/apr-1.7.0/test/testpipe.c:44:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/apr-1.7.0/test/testpipe.c:133:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char responsebuf[128];
data/apr-1.7.0/test/testpipe.c:138:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *args[2];
data/apr-1.7.0/test/testproc.c:34:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *args[2];
data/apr-1.7.0/test/testproc.c:90:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *args[2];
data/apr-1.7.0/test/testrand.c:54:41: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char expected[RANDOM_BUF_SZ])
data/apr-1.7.0/test/testrand.c:56:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[RANDOM_BUF_SZ];
data/apr-1.7.0/test/testrand.c:72:42: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char expected[RANDOM_BUF_SZ],
data/apr-1.7.0/test/testrand.c:77:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[RANDOM_BUF_SZ];
data/apr-1.7.0/test/testrand.c:101:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char c[2048];
data/apr-1.7.0/test/testrand.c:111:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c[1];
data/apr-1.7.0/test/testrand.c:127:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char expected[RANDOM_BUF_SZ] = {
data/apr-1.7.0/test/testrand.c:157:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char expected[RANDOM_BUF_SZ] = {
data/apr-1.7.0/test/testrand.c:188:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char expected[RANDOM_BUF_SZ] = {
data/apr-1.7.0/test/testrand.c:212:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char expected[RANDOM_BUF_SZ] = {
data/apr-1.7.0/test/testrand.c:243:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char expected[RANDOM_BUF_SZ] = {
data/apr-1.7.0/test/testrand.c:332:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[42];
data/apr-1.7.0/test/testshm.c:170:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *args[4];
data/apr-1.7.0/test/testshm.h:21:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/apr-1.7.0/test/testsock.c:37:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *args[4];
data/apr-1.7.0/test/testsock.c:246:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datastr[STRLEN];
data/apr-1.7.0/test/testsock.c:279:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datastr[STRLEN];
data/apr-1.7.0/test/testsock.c:385:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/apr-1.7.0/test/testsock.c:510:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[10];
data/apr-1.7.0/test/testsock.c:623:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/apr-1.7.0/test/testsockets.c:97:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sendbuf[STRLEN] = "APR_INET, SOCK_DGRAM";
data/apr-1.7.0/test/testsockets.c:98:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char recvbuf[80];
data/apr-1.7.0/test/teststr.c:99:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[100];
data/apr-1.7.0/test/teststr.c:135:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/apr-1.7.0/test/teststr.c:153:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128], *rv;
data/apr-1.7.0/test/teststr.c:174:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[SIZE + 1];
data/apr-1.7.0/test/teststr.c:296:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[7];
data/apr-1.7.0/test/teststr.c:340:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6], *ret;
data/apr-1.7.0/test/teststr.c:354:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6], *ret;
data/apr-1.7.0/test/teststr.c:368:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/apr-1.7.0/test/testtime.c:178:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[STR_SIZE];
data/apr-1.7.0/test/testtime.c:191:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char apr_str[STR_SIZE];
data/apr-1.7.0/test/testtime.c:192:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char libc_str[STR_SIZE];
data/apr-1.7.0/test/testtime.c:228:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[STR_SIZE];
data/apr-1.7.0/test/testtime.c:266:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[STR_SIZE];
data/apr-1.7.0/test/testutil.c:32:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[STRING_MAX], ebuf[128];
data/apr-1.7.0/threadproc/netware/thread.c:81:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char threadName[NX_MAX_OBJECT_NAME_LEN+1];
data/apr-1.7.0/threadproc/netware/thread.c:88:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(threadName, "APR_thread %04ld", ++thread_count);
data/apr-1.7.0/threadproc/os2/proc.c:306:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char savedir[300];
data/apr-1.7.0/threadproc/os2/proc.c:310:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char interpreter[1024];
data/apr-1.7.0/threadproc/os2/proc.c:311:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char error_object[260];
data/apr-1.7.0/threadproc/os2/proc.c:403:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[300];
data/apr-1.7.0/threadproc/os2/proc.c:408:29: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(interpreter, ".exe");
data/apr-1.7.0/threadproc/unix/proc.c:506:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *newargs[4];
data/apr-1.7.0/threadproc/unix/proc.c:537:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ch, args[i], len);
data/apr-1.7.0/threadproc/unix/signals.c:136:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *signal_description[APR_NUMSIG];
data/apr-1.7.0/time/unix/timestr.c:33:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
APR_DECLARE_DATA const char apr_month_snames[12][4] =
data/apr-1.7.0/time/unix/timestr.c:37:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
APR_DECLARE_DATA const char apr_day_snames[7][4] =
data/apr-1.7.0/time/win32/timestr.c:25:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
APR_DECLARE_DATA const char apr_month_snames[12][4] =
data/apr-1.7.0/time/win32/timestr.c:29:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
APR_DECLARE_DATA const char apr_day_snames[7][4] =
data/apr-1.7.0/time/win32/timestr.c:153:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_format + j, "%m/%d/%y", 8);
data/apr-1.7.0/time/win32/timestr.c:158:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_format + j, "%I:%M:%S %p", 11);
data/apr-1.7.0/time/win32/timestr.c:163:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_format + j, "%H:%M", 5);
data/apr-1.7.0/time/win32/timestr.c:168:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_format + j, "%H:%M:%S", 8);
data/apr-1.7.0/user/netware/userinfo.c:33:41: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static apr_status_t getpwnam_safe(const char *username,
data/apr-1.7.0/user/netware/userinfo.c:35:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pwbuf[PWBUF_SIZE])
data/apr-1.7.0/user/unix/groupinfo.c:40:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char grbuf[GRBUF_SIZE];
data/apr-1.7.0/user/unix/groupinfo.c:68:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char grbuf[GRBUF_SIZE];
data/apr-1.7.0/user/unix/userinfo.c:35:41: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static apr_status_t getpwnam_safe(const char *username,
data/apr-1.7.0/user/unix/userinfo.c:37:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pwbuf[PWBUF_SIZE])
data/apr-1.7.0/user/unix/userinfo.c:60:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pw, pwptr, sizeof *pw);
data/apr-1.7.0/user/unix/userinfo.c:74:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pwbuf[PWBUF_SIZE];
data/apr-1.7.0/user/unix/userinfo.c:108:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pwbuf[PWBUF_SIZE];
data/apr-1.7.0/user/unix/userinfo.c:126:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pwbuf[PWBUF_SIZE];
data/apr-1.7.0/user/win32/groupinfo.c:32:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char anydomain[256];
data/apr-1.7.0/user/win32/groupinfo.c:75:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAX_PATH], domain[MAX_PATH];
data/apr-1.7.0/user/win32/userinfo.c:76:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char regkey[MAX_PATH * 2];
data/apr-1.7.0/user/win32/userinfo.c:89:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(regkey, "SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\"
data/apr-1.7.0/user/win32/userinfo.c:95:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(regkey, "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\"
data/apr-1.7.0/user/win32/userinfo.c:115:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char retdir[MAX_PATH];
data/apr-1.7.0/user/win32/userinfo.c:123:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char retdir[MAX_PATH];
data/apr-1.7.0/user/win32/userinfo.c:148:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAX_PATH];
data/apr-1.7.0/user/win32/userinfo.c:207:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char anydomain[256];
data/apr-1.7.0/user/win32/userinfo.c:255:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAX_PATH], domain[MAX_PATH];
data/apr-1.7.0/build/aplibtool.c:155:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(var, arg, equal_pos - arg);
data/apr-1.7.0/build/aplibtool.c:254:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(arg) + 10);
data/apr-1.7.0/build/aplibtool.c:263:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(arg) + 10);
data/apr-1.7.0/build/aplibtool.c:288:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd_data->stub_name = (char *)malloc(strlen(arg) + 4);
data/apr-1.7.0/build/aplibtool.c:326:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(arg) + 5);
data/apr-1.7.0/build/aplibtool.c:339:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(arg) + 10);
data/apr-1.7.0/build/aplibtool.c:365:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(arg) + 2);
data/apr-1.7.0/build/aplibtool.c:485:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
total_len += strlen(cmd_data->arglist[a]) + 1;
data/apr-1.7.0/build/aplibtool.c:495:13: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(command, " ");
data/apr-1.7.0/build/aplibtool.c:499:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
command[strlen(command)-1] = 0;
data/apr-1.7.0/build/aplibtool.c:524:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd = (char *)malloc(2 * strlen(str) + 1);
data/apr-1.7.0/build/aplibtool.c:578:13: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(cmd, "/");
data/apr-1.7.0/build/aplibtool.c:604:13: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fullname, "/");
data/apr-1.7.0/build/aplibtool.c:650:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd_size += strlen(cmd_data->obj_files[a]) + 1;
data/apr-1.7.0/build/aplibtool.c:653:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd_size += strlen(GEN_EXPORTS) + strlen(def_file) + 3;
data/apr-1.7.0/build/aplibtool.c:653:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd_size += strlen(GEN_EXPORTS) + strlen(def_file) + 3;
data/apr-1.7.0/build/aplibtool.c:658:17: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(cmd, " ");
data/apr-1.7.0/build/aplibtool.c:684:13: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(implib_file, ".");
data/apr-1.7.0/build/jlibtool.c:379:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size += strlen(cc->vals[i]) + 1;
data/apr-1.7.0/build/jlibtool.c:393:17: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(newval, " ");
data/apr-1.7.0/build/jlibtool.c:408:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd = (char *)malloc(2 * strlen(str) + 3);
data/apr-1.7.0/build/jlibtool.c:530:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(var, arg, equal_pos - arg);
data/apr-1.7.0/build/jlibtool.c:690:17: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
old_umask = umask(0);
data/apr-1.7.0/build/jlibtool.c:691:5: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(old_umask);
data/apr-1.7.0/build/jlibtool.c:730:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(trimmed, name, ext - name);
data/apr-1.7.0/build/jlibtool.c:790:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(name) + 11);
data/apr-1.7.0/build/jlibtool.c:899:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(arg) + 10);
data/apr-1.7.0/build/jlibtool.c:971:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (path[strlen(path)-1] == '\n') {
data/apr-1.7.0/build/jlibtool.c:972:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path[strlen(path)-1] = '\0';
data/apr-1.7.0/build/jlibtool.c:988:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(arg) + 10);
data/apr-1.7.0/build/jlibtool.c:1055:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = strlen(LINKER_FLAG_PREFIX);
data/apr-1.7.0/build/jlibtool.c:1057:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = size + strlen(path) + strlen(RPATH) + 2;
data/apr-1.7.0/build/jlibtool.c:1057:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = size + strlen(path) + strlen(RPATH) + 2;
data/apr-1.7.0/build/jlibtool.c:1069:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(tmp, "=");
data/apr-1.7.0/build/jlibtool.c:1114:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i_p_len = strlen(install_path);
data/apr-1.7.0/build/jlibtool.c:1115:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
c_p_len = strlen(current_path);
data/apr-1.7.0/build/jlibtool.c:1129:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(exp_argument+cur_len, name, extlen-pathlen);
data/apr-1.7.0/build/jlibtool.c:1137:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(exp_argument+cur_len, name, extlen-pathlen);
data/apr-1.7.0/build/jlibtool.c:1162:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = malloc(strlen(file) + 3);
data/apr-1.7.0/build/jlibtool.c:1177:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char*)malloc(strlen(arg) + sizeof(LINKER_FLAG_PREFIX) + 1);
data/apr-1.7.0/build/jlibtool.c:1398:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd_data->basename = (char *)malloc(strlen(arg) + 4);
data/apr-1.7.0/build/jlibtool.c:1448:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(arg) + 5);
data/apr-1.7.0/build/jlibtool.c:1486:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarg = (char *)malloc(strlen(arg) + 2);
data/apr-1.7.0/build/jlibtool.c:1600:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd_size += strlen(cmd_data->obj_files[a]) + 1;
data/apr-1.7.0/build/jlibtool.c:1603:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd_size += strlen(GEN_EXPORTS) + strlen(def_file) + 3;
data/apr-1.7.0/build/jlibtool.c:1603:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd_size += strlen(GEN_EXPORTS) + strlen(def_file) + 3;
data/apr-1.7.0/build/jlibtool.c:1608:17: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(cmd, " ");
data/apr-1.7.0/build/jlibtool.c:1634:13: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(implib_file, ".");
data/apr-1.7.0/build/jlibtool.c:1652:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newpath = (char*)malloc(strlen(foo)+strlen(relpath)+2);
data/apr-1.7.0/build/jlibtool.c:1652:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newpath = (char*)malloc(strlen(foo)+strlen(relpath)+2);
data/apr-1.7.0/build/jlibtool.c:1654:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(newpath, "/");
data/apr-1.7.0/build/jlibtool.c:1827:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len1 = strlen(cmd_data->arglist->vals[cmd_data->arglist->num - 1]);
data/apr-1.7.0/build/jlibtool.c:1830:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len2 = strlen(static_lib_name);
data/apr-1.7.0/build/jlibtool.c:1954:13: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fullname, "/");
data/apr-1.7.0/dso/aix/dso.c:654:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tmpsym, ls->l_name, SYMNMLEN);
data/apr-1.7.0/dso/beos/dso.c:77:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer, strerror(errno), buflen);
data/apr-1.7.0/dso/os2/dso.c:102:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(message, ")");
data/apr-1.7.0/dso/unix/dso.c:129:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strchr(path + 1, '(') && path[strlen(path) - 1] == ')')
data/apr-1.7.0/dso/unix/dso.c:192:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *symname2 = (char*)malloc(sizeof(char)*(strlen(symname)+2));
data/apr-1.7.0/dso/unix/dso.c:220:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *symbol = (char*)malloc(sizeof(char)*(strlen(symname)+2));
data/apr-1.7.0/dso/win32/dso.c:139:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t symlen = strlen(symname) + 1;
data/apr-1.7.0/encoding/apr_encode.c:221:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(src);
data/apr-1.7.0/encoding/apr_encode.c:385:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(src);
data/apr-1.7.0/encoding/apr_encode.c:460:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(src);
data/apr-1.7.0/encoding/apr_encode.c:576:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(src);
data/apr-1.7.0/encoding/apr_encode.c:824:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(src);
data/apr-1.7.0/encoding/apr_encode.c:927:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(src);
data/apr-1.7.0/encoding/apr_encode.c:1101:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(src);
data/apr-1.7.0/encoding/apr_encode.c:1218:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(src);
data/apr-1.7.0/encoding/apr_encode.c:1308:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(src);
data/apr-1.7.0/file_io/os2/dir_make_recurse.c:29:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t len = strlen(path);
data/apr-1.7.0/file_io/os2/dir_make_recurse.c:52:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = strlen(newpath) - 1; i >= 0; i--) {
data/apr-1.7.0/file_io/os2/readwrite.c:279:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str);
data/apr-1.7.0/file_io/unix/dir.c:49:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t len = strlen (path);
data/apr-1.7.0/file_io/unix/dir.c:67:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = (strlen(newpath) - 1); i >= 0; i--) {
data/apr-1.7.0/file_io/unix/filepath.c:149:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rootlen = strlen(rootpath);
data/apr-1.7.0/file_io/unix/filepath.c:150:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxlen = rootlen + strlen(addpath) + 4; /* 4 for slashes at start, after
data/apr-1.7.0/file_io/unix/filepath_util.c:82:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path_size += strlen(((char**)pathelts->elts)[i]);
data/apr-1.7.0/file_io/unix/filepath_util.c:100:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t part_size = strlen(part);
data/apr-1.7.0/file_io/unix/readwrite.c:55:29: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int bytesread = read(thefile->filedes, thefile->buffer,
data/apr-1.7.0/file_io/unix/readwrite.c:116:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rv = read(thefile->filedes, buf, *nbytes);
data/apr-1.7.0/file_io/unix/readwrite.c:129:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rv = read(thefile->filedes, buf, *nbytes);
data/apr-1.7.0/file_io/unix/readwrite.c:306:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return apr_file_write_full(thefile, str, strlen(str), NULL);
data/apr-1.7.0/file_io/unix/tempdir.c:73:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t len = strlen(value);
data/apr-1.7.0/file_io/win32/dir.c:53:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t len = strlen(dirname);
data/apr-1.7.0/file_io/win32/dir.c:159:34: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
thedir->rootlen + wcslen(thedir->w.entry->cFileName) >= APR_PATH_MAX)
data/apr-1.7.0/file_io/win32/dir.c:202:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
thedir->rootlen + strlen(thedir->n.entry->cFileName) >= MAX_PATH)
data/apr-1.7.0/file_io/win32/dir.c:247:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t dirlen = strlen(thedir->dirname);
data/apr-1.7.0/file_io/win32/filepath.c:60:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(*inpath) > APR_PATH_MAX) {
data/apr-1.7.0/file_io/win32/filepath.c:80:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (volume && strlen(volume) > 0) {
data/apr-1.7.0/file_io/win32/filepath.c:81:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newpath = apr_pcalloc(p, strlen(server)+strlen(volume)+5);
data/apr-1.7.0/file_io/win32/filepath.c:81:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newpath = apr_pcalloc(p, strlen(server)+strlen(volume)+5);
data/apr-1.7.0/file_io/win32/filepath.c:472:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
baselen = strlen(basepath);
data/apr-1.7.0/file_io/win32/filepath.c:489:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strncmp(baseroot, addroot, strlen(baseroot)))
data/apr-1.7.0/file_io/win32/filepath.c:492:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rootlen = pathlen = strlen(addroot);
data/apr-1.7.0/file_io/win32/filepath.c:513:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strncmp(baseroot, addroot, strlen(baseroot)))
data/apr-1.7.0/file_io/win32/filepath.c:517:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rootlen = pathlen = strlen(addroot);
data/apr-1.7.0/file_io/win32/filepath.c:537:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
keptlen = rootlen = pathlen = strlen(baseroot);
data/apr-1.7.0/file_io/win32/filepath.c:544:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rootlen = pathlen = strlen(addroot);
data/apr-1.7.0/file_io/win32/filepath.c:570:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rootlen = strlen(baseroot);
data/apr-1.7.0/file_io/win32/filepath.c:583:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rootlen = pathlen = strlen(addroot);
data/apr-1.7.0/file_io/win32/filepath.c:611:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rootlen = strlen(baseroot);
data/apr-1.7.0/file_io/win32/filepath.c:875:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t namelen = strlen(finfo.name);
data/apr-1.7.0/file_io/win32/filestat.c:597:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fname) >= APR_PATH_MAX) {
data/apr-1.7.0/file_io/win32/open.c:53:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t srcremains = strlen(srcstr) + 1;
data/apr-1.7.0/file_io/win32/open.c:110:29: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t srcremains = wcslen(srcstr) + 1;
data/apr-1.7.0/file_io/win32/open.c:146:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t n = strlen(file) + 1;
data/apr-1.7.0/file_io/win32/open.c:157:13: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = wcslen(wpre);
data/apr-1.7.0/file_io/win32/open.c:185:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t n = strlen(file) + 1;
data/apr-1.7.0/file_io/win32/open.c:199:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = strlen(pre);
data/apr-1.7.0/file_io/win32/readwrite.c:204:28: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
apr_size_t read;
data/apr-1.7.0/file_io/win32/readwrite.c:206:59: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
thefile->bufsize, &read);
data/apr-1.7.0/file_io/win32/readwrite.c:213:41: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
thefile->dataRead = read;
data/apr-1.7.0/file_io/win32/readwrite.c:451:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t len = strlen(str);
data/apr-1.7.0/locks/unix/proc_mutex.c:150:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_ssize_t flen = strlen(fname);
data/apr-1.7.0/locks/unix/proc_mutex.c:151:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *p = apr_pstrndup(new_mutex->pool, fname, strlen(fname));
data/apr-1.7.0/misc/unix/errorcodes.c:291:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/apr-1.7.0/misc/unix/getopt.c:243:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(opts[i].name);
data/apr-1.7.0/misc/unix/rand.c:141:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
egd_path_len = strlen(*egdsockname);
data/apr-1.7.0/misc/unix/rand.c:187:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
srv = read(egd_socket, resp, resp_expected);
data/apr-1.7.0/misc/unix/rand.c:247:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read(fd, buf, length);
data/apr-1.7.0/misc/win32/env.c:35:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
inchars = strlen(envvar) + 1;
data/apr-1.7.0/misc/win32/env.c:82:19: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
inchars = wcslen(wvalue) + 1;
data/apr-1.7.0/misc/win32/env.c:140:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
outchars = inchars = strlen(value) + 1;
data/apr-1.7.0/misc/win32/internal.c:58:31: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newarr[arg] = (void*)(wcslen(arr[arg]) + 1);
data/apr-1.7.0/misc/win32/misc.c:234:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(WriteFile)(fh, sbuf, (DWORD)strlen(sbuf), &wrote, NULL);
data/apr-1.7.0/misc/win32/misc.c:262:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(WriteFile)(fh, sbuf, (DWORD)strlen(sbuf), &wrote, NULL);
data/apr-1.7.0/mmap/unix/mmap.c:121:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read(file->filedes, mm, size);
data/apr-1.7.0/network_io/unix/inet_ntop.c:221:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tp += strlen(tp);
data/apr-1.7.0/network_io/unix/sendrecv.c:81:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rv = read(sock->socketdes, buf, (*len));
data/apr-1.7.0/network_io/unix/sendrecv.c:94:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rv = read(sock->socketdes, buf, (*len));
data/apr-1.7.0/network_io/unix/sockaddr.c:128:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& buflen > strlen("::ffff:")) {
data/apr-1.7.0/network_io/unix/sockaddr.c:133:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(buf, buf + strlen("::ffff:"),
data/apr-1.7.0/network_io/unix/sockaddr.c:134:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(buf + strlen("::ffff:"))+1);
data/apr-1.7.0/network_io/unix/sockaddr.c:134:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(buf + strlen("::ffff:"))+1);
data/apr-1.7.0/network_io/unix/sockaddr.c:144:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char scbuf[IF_NAMESIZE], *p = buf + strlen(buf);
data/apr-1.7.0/network_io/unix/sockaddr.c:151:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (buflen < strlen(scbuf) + (p - buf) + 2) {
data/apr-1.7.0/network_io/unix/sockaddr.c:155:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(p, scbuf, strlen(scbuf) + 1);
data/apr-1.7.0/network_io/unix/sockaddr.c:258:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ch = lastchar = str + strlen(str) - 1;
data/apr-1.7.0/network_io/unix/sockaddr.c:559:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strspn(hostname, "0123456789.") == strlen(hostname)) {
data/apr-1.7.0/network_io/unix/sockaddr.c:996:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(network) < sizeof buf) {
data/apr-1.7.0/network_io/unix/sockaddr.c:1095:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ipstr) == 0) {
data/apr-1.7.0/passwd/apr_getpass.c:191:27: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((password[n] = getchar()) != '\n') {
data/apr-1.7.0/passwd/apr_getpass.c:249:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(pw_got) >= *bufsiz) {
data/apr-1.7.0/passwd/apr_getpass.c:253:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(pw_got, 0, strlen(pw_got));
data/apr-1.7.0/shmem/unix/shm.c:62:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
flen = strlen(filename);
data/apr-1.7.0/shmem/unix/shm.c:75:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_ssize_t slen = strlen(filename);
data/apr-1.7.0/strings/apr_cpystrn.c:235:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(str) + 1;
data/apr-1.7.0/strings/apr_cstr.c:50:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *e = p + (strlen(p) - 1);
data/apr-1.7.0/strings/apr_cstr.c:139:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*str = token + strlen(token);
data/apr-1.7.0/strings/apr_cstr.c:180:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t sep_len = strlen(separator);
data/apr-1.7.0/strings/apr_cstr.c:186:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
svn_stringbuf_appendbytes(new_str, string, strlen(string));
data/apr-1.7.0/strings/apr_cstr.c:393:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t len = strlen(prefix);
data/apr-1.7.0/strings/apr_fnmatch.c:161:20: [1] (buffer) mismatch:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
*pattern = mismatch;
data/apr-1.7.0/strings/apr_fnmatch.c:369:31: [1] (buffer) mismatch:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
pattern = mismatch;
data/apr-1.7.0/strings/apr_snprintf.c:463:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sub_len = strlen(ipaddr_str);
data/apr-1.7.0/strings/apr_snprintf.c:534:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*len = strlen(p);
data/apr-1.7.0/strings/apr_snprintf.c:973:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s_len = strlen(s);
data/apr-1.7.0/strings/apr_snprintf.c:1065:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s_len = strlen(s);
data/apr-1.7.0/strings/apr_snprintf.c:1184:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s_len = strlen(s);
data/apr-1.7.0/strings/apr_snprintf.c:1265:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s_len = strlen(s);
data/apr-1.7.0/strings/apr_strings.c:77:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(s) + 1;
data/apr-1.7.0/strings/apr_strings.c:137:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t cplen = strlen(cp);
data/apr-1.7.0/strings/apr_strings.c:161:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(argp);
data/apr-1.7.0/tables/apr_tables.c:246:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len += strlen(*strpp);
data/apr-1.7.0/tables/apr_tables.c:265:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(*strpp);
data/apr-1.7.0/tables/apr_tables.c:1158:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len += strlen((*next)->val);
data/apr-1.7.0/tables/apr_tables.c:1166:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
val_dst += strlen((*next)->val);
data/apr-1.7.0/test/mod_test.c:24:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_cpystrn(str, "Hello - I'm a DSO!\n", strlen("Hello - I'm a DSO!\n") + 1);
data/apr-1.7.0/test/proc_child.c:16:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bytes = (int)read(STDIN_FILENO, buf, 256);
data/apr-1.7.0/test/sendfile.c:274:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hdtr.headers[0].iov_len = strlen(hdtr.headers[0].iov_base);
data/apr-1.7.0/test/sendfile.c:276:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hdtr.headers[1].iov_len = strlen(hdtr.headers[1].iov_base);
data/apr-1.7.0/test/sendfile.c:285:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hdtr.trailers[0].iov_len = strlen(hdtr.trailers[0].iov_base);
data/apr-1.7.0/test/sendfile.c:287:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hdtr.trailers[1].iov_len = strlen(hdtr.trailers[1].iov_base);
data/apr-1.7.0/test/sendfile.c:294:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(HDR1) + strlen(HDR2) + HDR3_LEN +
data/apr-1.7.0/test/sendfile.c:294:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(HDR1) + strlen(HDR2) + HDR3_LEN +
data/apr-1.7.0/test/sendfile.c:295:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TRL1) + strlen(TRL2) + TRL3_LEN +
data/apr-1.7.0/test/sendfile.c:295:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TRL1) + strlen(TRL2) + TRL3_LEN +
data/apr-1.7.0/test/sendfile.c:562:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(sizeof buf > strlen(HDR1));
data/apr-1.7.0/test/sendfile.c:563:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bytes_read = strlen(HDR1);
data/apr-1.7.0/test/sendfile.c:568:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (bytes_read != strlen(HDR1)) {
data/apr-1.7.0/test/sendfile.c:572:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (memcmp(buf, HDR1, strlen(HDR1))) {
data/apr-1.7.0/test/sendfile.c:579:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(sizeof buf > strlen(HDR2));
data/apr-1.7.0/test/sendfile.c:580:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bytes_read = strlen(HDR2);
data/apr-1.7.0/test/sendfile.c:585:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (bytes_read != strlen(HDR2)) {
data/apr-1.7.0/test/sendfile.c:589:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (memcmp(buf, HDR2, strlen(HDR2))) {
data/apr-1.7.0/test/sendfile.c:640:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(sizeof buf > strlen(TRL1));
data/apr-1.7.0/test/sendfile.c:641:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bytes_read = strlen(TRL1);
data/apr-1.7.0/test/sendfile.c:646:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (bytes_read != strlen(TRL1)) {
data/apr-1.7.0/test/sendfile.c:650:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (memcmp(buf, TRL1, strlen(TRL1))) {
data/apr-1.7.0/test/sendfile.c:657:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(sizeof buf > strlen(TRL2));
data/apr-1.7.0/test/sendfile.c:658:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bytes_read = strlen(TRL2);
data/apr-1.7.0/test/sendfile.c:663:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (bytes_read != strlen(TRL2)) {
data/apr-1.7.0/test/sendfile.c:667:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (memcmp(buf, TRL2, strlen(TRL2))) {
data/apr-1.7.0/test/sockchild.c:74:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t length = strlen(DATASTR);
data/apr-1.7.0/test/testencode.c:772:101: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testencode.c:773:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testencode.c:781:101: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testencode.c:782:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testencode.c:790:101: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testencode.c:791:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testencode.c:799:101: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testencode.c:800:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testencode.c:822:101: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testencode.c:823:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testencode.c:830:101: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testencode.c:831:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testencode.c:838:101: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testencode.c:839:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testencode.c:846:101: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testencode.c:847:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:46:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:47:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:61:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:62:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:83:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:84:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:92:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:93:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:101:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:102:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:114:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:115:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:127:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:128:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:140:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:141:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:153:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:154:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:166:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:167:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:180:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:181:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:193:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:194:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:202:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:203:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:211:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:212:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:225:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:226:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:234:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:235:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:243:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:244:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:252:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:253:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:274:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:275:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:286:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:287:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testescape.c:298:97: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_psprintf(pool, "size mismatch (%" APR_SIZE_T_FMT "!=%" APR_SIZE_T_FMT ")", len, strlen(dest) + 1),
data/apr-1.7.0/test/testescape.c:299:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(len == strlen(dest) + 1));
data/apr-1.7.0/test/testfile.c:105:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(TESTSTR), nbytes);
data/apr-1.7.0/test/testfile.c:208:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t bytes = strlen(TESTSTR);
data/apr-1.7.0/test/testfile.c:252:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(TESTSTR), nbytes);
data/apr-1.7.0/test/testfile.c:262:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(TESTSTR) - 5, nbytes);
data/apr-1.7.0/test/testfile.c:277:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(TESTSTR) - 5, nbytes);
data/apr-1.7.0/test/testfile.c:284:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_STR_EQUAL(tc, TESTSTR + strlen(TESTSTR) - 5, str);
data/apr-1.7.0/test/testfile.c:518:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(s);
data/apr-1.7.0/test/testfile.c:521:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(s), nbytes);
data/apr-1.7.0/test/testfile.c:525:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(s);
data/apr-1.7.0/test/testfile.c:528:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(s), nbytes);
data/apr-1.7.0/test/testfile.c:532:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(s);
data/apr-1.7.0/test/testfile.c:535:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(s), nbytes);
data/apr-1.7.0/test/testfile.c:539:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(s);
data/apr-1.7.0/test/testfile.c:542:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(s), nbytes);
data/apr-1.7.0/test/testfile.c:624:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file_contents_equal(tc, fname, LINE1 LINE2, strlen(LINE1 LINE2));
data/apr-1.7.0/test/testfile.c:640:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[0].iov_len = strlen(LINE1);
data/apr-1.7.0/test/testfile.c:645:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file_contents_equal(tc, fname, LINE1, strlen(LINE1));
data/apr-1.7.0/test/testfile.c:648:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[0].iov_len = strlen(LINE1);
data/apr-1.7.0/test/testfile.c:650:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[1].iov_len = strlen(LINE2);
data/apr-1.7.0/test/testfile.c:652:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[2].iov_len = strlen(LINE1);
data/apr-1.7.0/test/testfile.c:654:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[3].iov_len = strlen(LINE1);
data/apr-1.7.0/test/testfile.c:656:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[4].iov_len = strlen(LINE2);
data/apr-1.7.0/test/testfile.c:665:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(LINE1)*4 + strlen(LINE2)*2);
data/apr-1.7.0/test/testfile.c:665:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(LINE1)*4 + strlen(LINE2)*2);
data/apr-1.7.0/test/testfile.c:682:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[0].iov_len = strlen(LINE1);
data/apr-1.7.0/test/testfile.c:684:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[1].iov_len = strlen(LINE2);
data/apr-1.7.0/test/testfile.c:686:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[2].iov_len = strlen(LINE1);
data/apr-1.7.0/test/testfile.c:688:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[3].iov_len = strlen(LINE1);
data/apr-1.7.0/test/testfile.c:690:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[4].iov_len = strlen(LINE2);
data/apr-1.7.0/test/testfile.c:695:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(LINE1)*3 + strlen(LINE2)*2, nbytes);
data/apr-1.7.0/test/testfile.c:695:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(LINE1)*3 + strlen(LINE2)*2, nbytes);
data/apr-1.7.0/test/testfile.c:701:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(LINE1)*3 + strlen(LINE2)*2);
data/apr-1.7.0/test/testfile.c:701:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(LINE1)*3 + strlen(LINE2)*2);
data/apr-1.7.0/test/testfile.c:717:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(TESTSTR);
data/apr-1.7.0/test/testfile.c:722:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[0].iov_len = strlen(LINE1);
data/apr-1.7.0/test/testfile.c:724:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[1].iov_len = strlen(LINE2);
data/apr-1.7.0/test/testfile.c:733:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TESTSTR) + strlen(LINE1) + strlen(LINE2));
data/apr-1.7.0/test/testfile.c:733:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TESTSTR) + strlen(LINE1) + strlen(LINE2));
data/apr-1.7.0/test/testfile.c:733:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TESTSTR) + strlen(LINE1) + strlen(LINE2));
data/apr-1.7.0/test/testfile.c:742:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t nbytes = strlen(TESTSTR);
data/apr-1.7.0/test/testfile.c:757:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[0].iov_len = strlen(LINE1);
data/apr-1.7.0/test/testfile.c:759:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[1].iov_len = strlen(LINE2);
data/apr-1.7.0/test/testfile.c:761:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec[2].iov_len = strlen(TESTSTR);
data/apr-1.7.0/test/testfile.c:770:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(LINE1) + strlen(LINE2) + strlen(TESTSTR));
data/apr-1.7.0/test/testfile.c:770:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(LINE1) + strlen(LINE2) + strlen(TESTSTR));
data/apr-1.7.0/test/testfile.c:770:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(LINE1) + strlen(LINE2) + strlen(TESTSTR));
data/apr-1.7.0/test/testfile.c:791:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(s);
data/apr-1.7.0/test/testfile.c:794:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(s), nbytes);
data/apr-1.7.0/test/testfile.c:833:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(s);
data/apr-1.7.0/test/testfile.c:836:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(s), nbytes);
data/apr-1.7.0/test/testfile.c:854:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(s);
data/apr-1.7.0/test/testfile.c:857:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(s), nbytes);
data/apr-1.7.0/test/testfile.c:889:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(s);
data/apr-1.7.0/test/testfile.c:892:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(s), nbytes);
data/apr-1.7.0/test/testfile.c:936:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(s);
data/apr-1.7.0/test/testfile.c:939:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(s), nbytes);
data/apr-1.7.0/test/testfileinfo.c:176:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const apr_size_t data_len = strlen(NEWFILEDATA);
data/apr-1.7.0/test/testlfs.c:187:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_file_write_full(fh, TESTSTR, strlen(TESTSTR), NULL));
data/apr-1.7.0/test/testlfs.c:193:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
finfo.size == eightGB + strlen(TESTSTR));
data/apr-1.7.0/test/testmmap.c:57:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_TRUE(tc, file1[strlen(file1) - 1] != '/');
data/apr-1.7.0/test/testmmap.c:80:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
thisfsize = strlen(test_string);
data/apr-1.7.0/test/testoc.c:33:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("APR_OC_REASON_DEATH") + 1);
data/apr-1.7.0/test/testoc.c:37:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("APR_OC_REASON_LOST") + 1);
data/apr-1.7.0/test/testoc.c:41:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("APR_OC_REASON_UNWRITEABLE") + 1);
data/apr-1.7.0/test/testoc.c:45:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("APR_OC_REASON_RESTART") + 1);
data/apr-1.7.0/test/testpipe.c:83:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen("this is a test");
data/apr-1.7.0/test/testpipe.c:108:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen("this is a test");
data/apr-1.7.0/test/testpipe.c:116:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen("this is a test"), nbytes);
data/apr-1.7.0/test/testpipe.c:123:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen("this is a test"), nbytes);
data/apr-1.7.0/test/testpoll.c:99:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen("hello"), len);
data/apr-1.7.0/test/testpoll.c:116:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen("hello"), buflen);
data/apr-1.7.0/test/testproc.c:63:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen(TESTSTR);
data/apr-1.7.0/test/testproc.c:66:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(TESTSTR), length);
data/apr-1.7.0/test/testproc.c:110:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen(TESTSTR);
data/apr-1.7.0/test/testshm.c:59:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_cpystrn(boxes[boxnum].msg, msg, strlen(msg) + 1);
data/apr-1.7.0/test/testshmproducer.c:34:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_cpystrn(boxes[boxnum].msg, msg, strlen(msg) + 1);
data/apr-1.7.0/test/testsock.c:226:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen(DATASTR);
data/apr-1.7.0/test/testsock.c:230:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(DATASTR), wait_child(tc, &proc));
data/apr-1.7.0/test/testsock.c:264:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(datastr), wait_child(tc, &proc));
data/apr-1.7.0/test/testsock.c:300:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_SIZE_EQUAL(tc, strlen(datastr), wait_child(tc, &proc));
data/apr-1.7.0/test/testsock.c:642:68: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_INT_EQUAL(tc, APR_ENOSPC, apr_sockaddr_ip_getbuf(buf, strlen(TEST_ZONE_ADDR), sa));
data/apr-1.7.0/test/testsock.c:643:68: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_INT_EQUAL(tc, APR_ENOSPC, apr_sockaddr_ip_getbuf(buf, strlen(TEST_ZONE_FULLADDR), sa));
data/apr-1.7.0/test/testsock.c:646:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_sockaddr_ip_getbuf(buf, strlen(TEST_ZONE_FULLADDR) + 1, sa));
data/apr-1.7.0/test/testsock.c:648:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_INT_EQUAL(tc, 'A', buf[strlen(buf) + 1]);
data/apr-1.7.0/test/teststr.c:159:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_TRUE(tc, strlen(buf) > 0);
data/apr-1.7.0/test/teststr.c:268:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ABTS_PTR_EQUAL(tc, ts[n].in + strlen(ts[n].in), end);
data/apr-1.7.0/threadproc/netware/thread.c:85:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (threadName, attr->thread_name, NX_MAX_OBJECT_NAME_LEN);
data/apr-1.7.0/threadproc/os2/proc.c:395:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int end = strlen(interpreter) - 1;
data/apr-1.7.0/threadproc/os2/proc.c:453:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmdlen += strlen(newargs[i]) + 3;
data/apr-1.7.0/threadproc/os2/proc.c:468:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmdline_pos += strlen(cmdline_pos);
data/apr-1.7.0/threadproc/os2/proc.c:482:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
env_len += strlen(env[e]) + 1;
data/apr-1.7.0/threadproc/os2/proc.c:489:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
env_block_pos += strlen(env_block_pos) + 1;
data/apr-1.7.0/threadproc/unix/proc.c:513:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
onearg_len += strlen(args[i]);
data/apr-1.7.0/threadproc/unix/proc.c:535:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(args[i]);
data/apr-1.7.0/threadproc/win32/proc.c:265:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(username) + 1;
data/apr-1.7.0/threadproc/win32/proc.c:279:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(password) + 1;
data/apr-1.7.0/threadproc/win32/proc.c:361:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd = apr_palloc(p, 2 * strlen(str) + 1); /* Be safe */
data/apr-1.7.0/threadproc/win32/proc.c:489:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
progname = apr_pstrmemdup(pool, progname + 1, strlen(progname) - 2);
data/apr-1.7.0/threadproc/win32/proc.c:549:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
progname = apr_pstrmemdup(pool, shellcmd + 1, strlen(shellcmd) - 2);
data/apr-1.7.0/threadproc/win32/proc.c:559:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(progname);
data/apr-1.7.0/threadproc/win32/proc.c:579:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(progname);
data/apr-1.7.0/threadproc/win32/proc.c:591:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
progname = apr_pstrmemdup(pool, shellcmd + 1, strlen(shellcmd) - 2);
data/apr-1.7.0/threadproc/win32/proc.c:599:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(progname);
data/apr-1.7.0/threadproc/win32/proc.c:660:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iEnvBlockLen += strlen(env[i]) + 1;
data/apr-1.7.0/threadproc/win32/proc.c:676:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t in = strlen(env[i]) + 1;
data/apr-1.7.0/threadproc/win32/proc.c:730:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t nprg = strlen(progname) + 1;
data/apr-1.7.0/threadproc/win32/proc.c:746:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t ncmd = strlen(cmdline) + 1;
data/apr-1.7.0/threadproc/win32/proc.c:763:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
apr_size_t ncwd = strlen(attr->currdir) + 1;
data/apr-1.7.0/time/win32/timestr.c:134:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t i, j, format_length = strlen(format);
data/apr-1.7.0/user/win32/userinfo.c:91:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
keylen = (DWORD)strlen(regkey);
data/apr-1.7.0/user/win32/userinfo.c:97:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
keylen = (DWORD)strlen(regkey);
ANALYSIS SUMMARY:
Hits = 1014
Lines analyzed = 96821 in approximately 2.47 seconds (39265 lines/second)
Physical Source Lines of Code (SLOC) = 64149
Hits@level = [0] 247 [1] 364 [2] 450 [3] 34 [4] 162 [5] 4
Hits@level+ = [0+] 1261 [1+] 1014 [2+] 650 [3+] 200 [4+] 166 [5+] 4
Hits/KSLOC@level+ = [0+] 19.6574 [1+] 15.8069 [2+] 10.1327 [3+] 3.11774 [4+] 2.58773 [5+] 0.0623548
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.