Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/blist-1.3.6/blist/blist.h Examining data/blist-1.3.6/blist/_blist.c FINAL RESULTS: data/blist-1.3.6/blist/_blist.c:3443:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(parent->children, data/blist-1.3.6/blist/_blist.c:3604:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(group->children, data/blist-1.3.6/blist/_blist.c:4643:33: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&di, &d, 8); data/blist-1.3.6/blist/_blist.c:5131:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, in1, sizeof(PyBList *) * n1); data/blist-1.3.6/blist/_blist.c:5132:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[n1], in2, sizeof(PyBList *) * n2); data/blist-1.3.6/blist/_blist.c:5272:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[nout], &in1[leaf1_i], data/blist-1.3.6/blist/_blist.c:5278:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[nout], &in2[leaf2_i], data/blist-1.3.6/blist/_blist.c:5302:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(scratch, in, n * sizeof(PyBList *)); data/blist-1.3.6/blist/_blist.c:5330:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(scratch, in, n1 * sizeof(PyBList *)); data/blist-1.3.6/blist/_blist.c:5331:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&scratch[n1], &in[half], n2 * sizeof(PyBList *)); data/blist-1.3.6/blist/_blist.c:5333:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in, scratch, n1 * sizeof(PyBList *)); data/blist-1.3.6/blist/_blist.c:5334:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&in[n1], &scratch[half], n2 * sizeof(PyBList *)); data/blist-1.3.6/blist/_blist.c:6595:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&saved.BLIST_FIRST_FIELD, &self->BLIST_FIRST_FIELD, data/blist-1.3.6/blist/_blist.c:6650:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&self->BLIST_FIRST_FIELD, &saved.BLIST_FIRST_FIELD, ANALYSIS SUMMARY: Hits = 14 Lines analyzed = 7995 in approximately 0.18 seconds (44923 lines/second) Physical Source Lines of Code (SLOC) = 6241 Hits@level = [0] 7 [1] 0 [2] 14 [3] 0 [4] 0 [5] 0 Hits@level+ = [0+] 21 [1+] 14 [2+] 14 [3+] 0 [4+] 0 [5+] 0 Hits/KSLOC@level+ = [0+] 3.36485 [1+] 2.24323 [2+] 2.24323 [3+] 0 [4+] 0 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.