Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/brasero-3.12.2/nautilus/nautilus-burn-bar.c Examining data/brasero-3.12.2/nautilus/nautilus-burn-extension.c Examining data/brasero-3.12.2/nautilus/nautilus-burn-bar.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-tool-color-picker.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-metadata.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-edit.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-async-task-manager.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-buffer.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-tool-color-picker.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-misc.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-view.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-notify.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-notify.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-disc-message.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-edit.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-misc.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-font.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-pk.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-metadata.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-async-task-manager.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-background.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-pk.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-background.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-disc-message.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-view.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-font.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-jacket-buffer.h Examining data/brasero-3.12.2/libbrasero-utils/brasero-io.c Examining data/brasero-3.12.2/libbrasero-utils/brasero-io.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-filtered-uri.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-type-private.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-file-monitor.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-file-node.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-xfer.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-src-selection.c Examining data/brasero-3.12.2/libbrasero-burn/libbrasero-marshal.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-caps-plugin.c Examining data/brasero-3.12.2/libbrasero-burn/burn-task-ctx.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-status-dialog.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-status.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-image-type-chooser.c Examining data/brasero-3.12.2/libbrasero-burn/burn-basics.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-video-options.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-image-cfg.h Examining data/brasero-3.12.2/libbrasero-burn/burn-plugin-manager.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-stream.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-sum-dialog.c Examining data/brasero-3.12.2/libbrasero-burn/burn-image-format.c Examining data/brasero-3.12.2/libbrasero-burn/burn-debug.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-image.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-image-type-chooser.h Examining data/brasero-3.12.2/libbrasero-burn/burn-task.h Examining data/brasero-3.12.2/libbrasero-burn/burn-mkisofs-base.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-blank-dialog.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-image.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-dest-selection.h Examining data/brasero-3.12.2/libbrasero-burn/libbrasero-marshal.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-image-cfg.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-cover.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-session-helper.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-xfer.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-stream.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-data.c Examining data/brasero-3.12.2/libbrasero-burn/burn-plugin.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-sum-dialog.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-data-vfs.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-caps-burn.h Examining data/brasero-3.12.2/libbrasero-burn/burn-task.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-stream-cfg.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-burn-options.h Examining data/brasero-3.12.2/libbrasero-burn/burn-caps.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-type.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-caps-burn.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-data-tree-model.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-drive-properties.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-session-span.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-file-monitor.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-file-node.h Examining data/brasero-3.12.2/libbrasero-burn/burn-task-ctx.h Examining data/brasero-3.12.2/libbrasero-burn/burn-dbus.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-status.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-plugin-private.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-burn-dialog.c Examining data/brasero-3.12.2/libbrasero-burn/burn-dbus.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-plugin-information.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-data-session.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-medium-properties.h Examining data/brasero-3.12.2/libbrasero-burn/burn-process.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-dest-selection.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-burn.c Examining data/brasero-3.12.2/libbrasero-burn/burn-task-item.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-disc.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-burn.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-image-properties.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-src-selection.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-plugin-registration.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-drive-properties.c Examining data/brasero-3.12.2/libbrasero-burn/burn-job.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-burn-lib.h Examining data/brasero-3.12.2/libbrasero-burn/burn-mkisofs-base.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-blank-dialog.h Examining data/brasero-3.12.2/libbrasero-burn/burn-process.c Examining data/brasero-3.12.2/libbrasero-burn/burn-task-item.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-data-cfg.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-src-image.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-data-session.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-tool-dialog-private.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-image-properties.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track.h Examining data/brasero-3.12.2/libbrasero-burn/burn-debug.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-stream-cfg.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-data-project.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-medium-properties.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-type.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-tool-dialog.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-burn-options.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-video-options.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-caps-session.c Examining data/brasero-3.12.2/libbrasero-burn/burn-job.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-error.h Examining data/brasero-3.12.2/libbrasero-burn/burn-basics.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-cover.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-data-vfs.c Examining data/brasero-3.12.2/libbrasero-burn/burn-caps.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-tool-dialog.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-tags.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-enums.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-progress.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-filtered-uri.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-status-dialog.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-data.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-session-cfg.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-session.h Examining data/brasero-3.12.2/libbrasero-burn/burn-plugin-manager.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-session-span.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-burn-dialog.h Examining data/brasero-3.12.2/libbrasero-burn/burn-image-format.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-data-cfg.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-src-image.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-session.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-data-tree-model.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-session-cfg.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-plugin.h Examining data/brasero-3.12.2/libbrasero-burn/brasero-track-disc.c Examining data/brasero-3.12.2/libbrasero-burn/brasero-progress.h Examining data/brasero-3.12.2/src/brasero-layout.c Examining data/brasero-3.12.2/src/brasero-audio-disc.c Examining data/brasero-3.12.2/src/brasero-split-dialog.h Examining data/brasero-3.12.2/src/brasero-disc.h Examining data/brasero-3.12.2/src/eggtreemultidnd.c Examining data/brasero-3.12.2/src/eggtreemultidnd.h Examining data/brasero-3.12.2/src/brasero-project-type-chooser.c Examining data/brasero-3.12.2/src/brasero-audio-disc.h Examining data/brasero-3.12.2/src/brasero-video-tree-model.h Examining data/brasero-3.12.2/src/brasero-pref.c Examining data/brasero-3.12.2/src/brasero-file-chooser.h Examining data/brasero-3.12.2/src/brasero-file-filtered.c Examining data/brasero-3.12.2/src/brasero-song-control.h Examining data/brasero-3.12.2/src/brasero-disc.c Examining data/brasero-3.12.2/src/brasero-rename.c Examining data/brasero-3.12.2/src/brasero-marshal.h Examining data/brasero-3.12.2/src/brasero-video-disc.c Examining data/brasero-3.12.2/src/brasero-player-bacon.c Examining data/brasero-3.12.2/src/brasero-search-engine.c Examining data/brasero-3.12.2/src/brasero-split-dialog.c Examining data/brasero-3.12.2/src/brasero-project-manager.c Examining data/brasero-3.12.2/src/brasero-search-engine.h Examining data/brasero-3.12.2/src/brasero-rename.h Examining data/brasero-3.12.2/src/brasero-project-name.h Examining data/brasero-3.12.2/src/brasero-utils.c Examining data/brasero-3.12.2/src/brasero-multi-dnd.h Examining data/brasero-3.12.2/src/brasero-drive-settings.h Examining data/brasero-3.12.2/src/brasero-project-manager.h Examining data/brasero-3.12.2/src/brasero-setting.h Examining data/brasero-3.12.2/src/brasero-project-parse.h Examining data/brasero-3.12.2/src/brasero-preview.h Examining data/brasero-3.12.2/src/brasero-utils.h Examining data/brasero-3.12.2/src/brasero-filter-option.c Examining data/brasero-3.12.2/src/brasero-eject-dialog.h Examining data/brasero-3.12.2/src/brasero-cli.c Examining data/brasero-3.12.2/src/brasero-data-disc.h Examining data/brasero-3.12.2/src/brasero-player.h Examining data/brasero-3.12.2/src/baobab-cell-renderer-progress.h Examining data/brasero-3.12.2/src/brasero-project.c Examining data/brasero-3.12.2/src/brasero-layout.h Examining data/brasero-3.12.2/src/brasero-pref.h Examining data/brasero-3.12.2/src/brasero-uri-container.c Examining data/brasero-3.12.2/src/brasero-playlist.h Examining data/brasero-3.12.2/src/brasero-app.h Examining data/brasero-3.12.2/src/brasero-plugin-manager-ui.c Examining data/brasero-3.12.2/src/brasero-plugin-option.c Examining data/brasero-3.12.2/src/baobab-cell-renderer-progress.c Examining data/brasero-3.12.2/src/brasero-marshal.c Examining data/brasero-3.12.2/src/brasero-file-filtered.h Examining data/brasero-3.12.2/src/brasero-multi-song-props.c Examining data/brasero-3.12.2/src/brasero-preview.c Examining data/brasero-3.12.2/src/brasero-song-properties.c Examining data/brasero-3.12.2/src/brasero-search-tracker.c Examining data/brasero-3.12.2/src/brasero-multi-dnd.c Examining data/brasero-3.12.2/src/brasero-song-properties.h Examining data/brasero-3.12.2/src/brasero-plugin-option.h Examining data/brasero-3.12.2/src/brasero-video-disc.h Examining data/brasero-3.12.2/src/brasero-playlist.c Examining data/brasero-3.12.2/src/brasero-project-name.c Examining data/brasero-3.12.2/src/brasero-filter-option.h Examining data/brasero-3.12.2/src/brasero-setting.c Examining data/brasero-3.12.2/src/brasero-layout-object.c Examining data/brasero-3.12.2/src/brasero-cli.h Examining data/brasero-3.12.2/src/brasero-project.h Examining data/brasero-3.12.2/src/brasero-layout-object.h Examining data/brasero-3.12.2/src/brasero-project-type-chooser.h Examining data/brasero-3.12.2/src/brasero-eject-dialog.c Examining data/brasero-3.12.2/src/brasero-uri-container.h Examining data/brasero-3.12.2/src/brasero-time-button.h Examining data/brasero-3.12.2/src/brasero-multi-song-props.h Examining data/brasero-3.12.2/src/brasero-song-control.c Examining data/brasero-3.12.2/src/brasero-search-tracker.h Examining data/brasero-3.12.2/src/brasero-project-parse.c Examining data/brasero-3.12.2/src/brasero-player.c Examining data/brasero-3.12.2/src/brasero-data-disc.c Examining data/brasero-3.12.2/src/main.c Examining data/brasero-3.12.2/src/brasero-plugin-manager-ui.h Examining data/brasero-3.12.2/src/brasero-time-button.c Examining data/brasero-3.12.2/src/brasero-video-tree-model.c Examining data/brasero-3.12.2/src/brasero-file-chooser.c Examining data/brasero-3.12.2/src/brasero-drive-settings.c Examining data/brasero-3.12.2/src/brasero-app.c Examining data/brasero-3.12.2/src/brasero-player-bacon.h Examining data/brasero-3.12.2/libbrasero-media/scsi-status-page.h Examining data/brasero-3.12.2/libbrasero-media/scsi-sbc.h Examining data/brasero-3.12.2/libbrasero-media/scsi-error.h Examining data/brasero-3.12.2/libbrasero-media/burn-iso9660.h Examining data/brasero-3.12.2/libbrasero-media/scsi-mode-pages.h Examining data/brasero-3.12.2/libbrasero-media/scsi-command.h Examining data/brasero-3.12.2/libbrasero-media/scsi-error.c Examining data/brasero-3.12.2/libbrasero-media/scsi-prevent-allow-medium-removal.c Examining data/brasero-3.12.2/libbrasero-media/brasero-medium-selection.h Examining data/brasero-3.12.2/libbrasero-media/burn-iso9660.c Examining data/brasero-3.12.2/libbrasero-media/burn-volume.h Examining data/brasero-3.12.2/libbrasero-media/brasero-medium-selection.c Examining data/brasero-3.12.2/libbrasero-media/scsi-read-format-capacities.c Examining data/brasero-3.12.2/libbrasero-media/libbrasero-marshal.h Examining data/brasero-3.12.2/libbrasero-media/scsi-write-page.h Examining data/brasero-3.12.2/libbrasero-media/scsi-get-configuration.h Examining data/brasero-3.12.2/libbrasero-media/scsi-netbsd.c Examining data/brasero-3.12.2/libbrasero-media/brasero-drive-selection.h Examining data/brasero-3.12.2/libbrasero-media/brasero-medium.c Examining data/brasero-3.12.2/libbrasero-media/scsi-sg.c Examining data/brasero-3.12.2/libbrasero-media/scsi-base.h Examining data/brasero-3.12.2/libbrasero-media/scsi-sense-data.h Examining data/brasero-3.12.2/libbrasero-media/libbrasero-marshal.c Examining data/brasero-3.12.2/libbrasero-media/scsi-sense-data.c Examining data/brasero-3.12.2/libbrasero-media/scsi-read-disc-structure.c Examining data/brasero-3.12.2/libbrasero-media/brasero-medium-monitor.h Examining data/brasero-3.12.2/libbrasero-media/scsi-mode-select.c Examining data/brasero-3.12.2/libbrasero-media/burn-volume-source.h Examining data/brasero-3.12.2/libbrasero-media/scsi-read-track-information.c Examining data/brasero-3.12.2/libbrasero-media/scsi-utils.h Examining data/brasero-3.12.2/libbrasero-media/brasero-volume.c Examining data/brasero-3.12.2/libbrasero-media/burn-iso-field.h Examining data/brasero-3.12.2/libbrasero-media/brasero-drive.h Examining data/brasero-3.12.2/libbrasero-media/scsi-read-toc-pma-atip.c Examining data/brasero-3.12.2/libbrasero-media/brasero-drive-priv.h Examining data/brasero-3.12.2/libbrasero-media/scsi-read-cd.h Examining data/brasero-3.12.2/libbrasero-media/burn-susp.h Examining data/brasero-3.12.2/libbrasero-media/scsi-mech-status.h Examining data/brasero-3.12.2/libbrasero-media/scsi-get-performance.h Examining data/brasero-3.12.2/libbrasero-media/scsi-inquiry.c Examining data/brasero-3.12.2/libbrasero-media/scsi-mode-sense.c Examining data/brasero-3.12.2/libbrasero-media/scsi-opcodes.h Examining data/brasero-3.12.2/libbrasero-media/scsi-read-disc-structure.h Examining data/brasero-3.12.2/libbrasero-media/burn-volume-source.c Examining data/brasero-3.12.2/libbrasero-media/burn-volume.c Examining data/brasero-3.12.2/libbrasero-media/scsi-mmc2.h Examining data/brasero-3.12.2/libbrasero-media/burn-susp.c Examining data/brasero-3.12.2/libbrasero-media/brasero-media.c Examining data/brasero-3.12.2/libbrasero-media/scsi-mech-status.c Examining data/brasero-3.12.2/libbrasero-media/scsi-get-performance.c Examining data/brasero-3.12.2/libbrasero-media/brasero-units.h Examining data/brasero-3.12.2/libbrasero-media/scsi-spc1.h Examining data/brasero-3.12.2/libbrasero-media/scsi-read-capacity.c Examining data/brasero-3.12.2/libbrasero-media/scsi-dvd-structures.h Examining data/brasero-3.12.2/libbrasero-media/brasero-drive.c Examining data/brasero-3.12.2/libbrasero-media/scsi-read10.c Examining data/brasero-3.12.2/libbrasero-media/brasero-units.c Examining data/brasero-3.12.2/libbrasero-media/scsi-read-track-information.h Examining data/brasero-3.12.2/libbrasero-media/scsi-cam.c Examining data/brasero-3.12.2/libbrasero-media/burn-iso-field.c Examining data/brasero-3.12.2/libbrasero-media/scsi-mmc3.h Examining data/brasero-3.12.2/libbrasero-media/scsi-inquiry.h Examining data/brasero-3.12.2/libbrasero-media/brasero-medium.h Examining data/brasero-3.12.2/libbrasero-media/brasero-medium-monitor.c Examining data/brasero-3.12.2/libbrasero-media/scsi-read-cd.c Examining data/brasero-3.12.2/libbrasero-media/scsi-mmc1.h Examining data/brasero-3.12.2/libbrasero-media/brasero-media-private.h Examining data/brasero-3.12.2/libbrasero-media/brasero-medium-selection-priv.h Examining data/brasero-3.12.2/libbrasero-media/scsi-q-subchannel.h Examining data/brasero-3.12.2/libbrasero-media/scsi-read-capacity.h Examining data/brasero-3.12.2/libbrasero-media/scsi-read-disc-info.h Examining data/brasero-3.12.2/libbrasero-media/scsi-read-format-capacities.h Examining data/brasero-3.12.2/libbrasero-media/scsi-test-unit-ready.c Examining data/brasero-3.12.2/libbrasero-media/brasero-volume.h Examining data/brasero-3.12.2/libbrasero-media/scsi-device.h Examining data/brasero-3.12.2/libbrasero-media/brasero-drive-selection.c Examining data/brasero-3.12.2/libbrasero-media/scsi-uscsi.c Examining data/brasero-3.12.2/libbrasero-media/scsi-read-disc-info.c Examining data/brasero-3.12.2/libbrasero-media/brasero-gio-operation.h Examining data/brasero-3.12.2/libbrasero-media/scsi-get-configuration.c Examining data/brasero-3.12.2/libbrasero-media/scsi-read-toc-pma-atip.h Examining data/brasero-3.12.2/libbrasero-media/brasero-media.h Examining data/brasero-3.12.2/libbrasero-media/brasero-gio-operation.c Examining data/brasero-3.12.2/plugins/checksum/burn-checksum-image.c Examining data/brasero-3.12.2/plugins/checksum/burn-volume-read.c Examining data/brasero-3.12.2/plugins/checksum/burn-checksum-files.c Examining data/brasero-3.12.2/plugins/checksum/burn-volume-read.h Examining data/brasero-3.12.2/plugins/libburnia/burn-libburn.c Examining data/brasero-3.12.2/plugins/libburnia/burn-libburnia.h Examining data/brasero-3.12.2/plugins/libburnia/burn-libisofs.c Examining data/brasero-3.12.2/plugins/libburnia/burn-libburn-common.h Examining data/brasero-3.12.2/plugins/libburnia/burn-libburn-common.c Examining data/brasero-3.12.2/plugins/local-track/burn-uri.c Examining data/brasero-3.12.2/plugins/local-track/burn-local-image.c Examining data/brasero-3.12.2/plugins/growisofs/burn-dvd-rw-format.c Examining data/brasero-3.12.2/plugins/growisofs/burn-growisofs.c Examining data/brasero-3.12.2/plugins/growisofs/burn-growisofs-common.h Examining data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c Examining data/brasero-3.12.2/plugins/transcode/burn-transcode.c Examining data/brasero-3.12.2/plugins/transcode/burn-vob.c Examining data/brasero-3.12.2/plugins/transcode/burn-normalize.h Examining data/brasero-3.12.2/plugins/transcode/burn-normalize.c Examining data/brasero-3.12.2/plugins/dvdauthor/burn-dvdauthor.c Examining data/brasero-3.12.2/plugins/dvdcss/burn-dvdcss.c Examining data/brasero-3.12.2/plugins/dvdcss/burn-dvdcss-private.h Examining data/brasero-3.12.2/plugins/vcdimager/burn-vcdimager.c Examining data/brasero-3.12.2/plugins/cdrdao/burn-cdrdao.c Examining data/brasero-3.12.2/plugins/cdrtools/burn-cdda2wav.c Examining data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c Examining data/brasero-3.12.2/plugins/cdrtools/burn-cdrtools.h Examining data/brasero-3.12.2/plugins/cdrtools/burn-mkisofs.c Examining data/brasero-3.12.2/plugins/cdrtools/burn-readcd.c Examining data/brasero-3.12.2/plugins/cdrkit/burn-cdrkit.h Examining data/brasero-3.12.2/plugins/cdrkit/burn-readom.c Examining data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c Examining data/brasero-3.12.2/plugins/cdrkit/burn-genisoimage.c FINAL RESULTS: data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:386:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (key->name, data/brasero-3.12.2/libbrasero-burn/brasero-track-data.c:406:4: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (buffer, G_DIR_SEPARATOR_S); data/brasero-3.12.2/libbrasero-burn/brasero-track-data.c:418:4: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (buffer, G_DIR_SEPARATOR_S); data/brasero-3.12.2/libbrasero-burn/brasero-track-data.c:433:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (name + (64 - width - dot_len), data/brasero-3.12.2/libbrasero-burn/brasero-track-data.c:443:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (buffer, G_DIR_SEPARATOR_S); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:111:2: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf (format_real, arg_list); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:131:2: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf (format_real, arg_list); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:190:2: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf (format_real, arg_list); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:328:2: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf (format_real, arg_list); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:395:2: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf (format_real, arg_list); data/brasero-3.12.2/libbrasero-burn/burn-plugin.c:280:26: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. if ((standard_output && sscanf (standard_output, version_format, &major, &minor, &sub) == i) data/brasero-3.12.2/libbrasero-burn/burn-plugin.c:281:25: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. || (standard_error && sscanf (standard_error, version_format, &major, &minor, &sub) == i)) { data/brasero-3.12.2/libbrasero-media/brasero-media.c:501:2: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf (format_real, arg_list); data/brasero-3.12.2/libbrasero-media/burn-iso9660.c:834:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (record_name, susp_ctx.rr_name); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1134:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_ACCESS_CAN_READ); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1136:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_STANDARD_CONTENT_TYPE); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1138:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_STANDARD_ICON); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1140:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_THUMBNAIL_PATH); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1145:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_STANDARD_SIZE); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1690:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_STANDARD_CONTENT_TYPE); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1757:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_STANDARD_CONTENT_TYPE); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1990:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_ACCESS_CAN_READ); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1993:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_STANDARD_CONTENT_TYPE); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1996:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_STANDARD_CONTENT_TYPE); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:1999:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (attributes, "," G_FILE_ATTRIBUTE_STANDARD_ICON); data/brasero-3.12.2/libbrasero-utils/brasero-misc.c:115:2: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf (format_real, arg_list); data/brasero-3.12.2/libbrasero-burn/brasero-burn-dialog.c:789:67: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. gtk_file_chooser_set_current_folder (GTK_FILE_CHOOSER (message), g_get_home_dir ()); data/brasero-3.12.2/libbrasero-burn/brasero-burn-dialog.c:1670:11: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_home_dir ()); data/brasero-3.12.2/libbrasero-burn/brasero-drive-properties.c:400:10: [3] (buffer) g_get_tmp_dir: This function is synonymous with 'getenv("TMP")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. path = g_get_tmp_dir (); data/brasero-3.12.2/libbrasero-burn/brasero-image-properties.c:112:12: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_home_dir ()); data/brasero-3.12.2/libbrasero-burn/brasero-session.c:1230:36: [3] (buffer) g_get_tmp_dir: This function is synonymous with 'getenv("TMP")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. return priv->tmpdir? priv->tmpdir:g_get_tmp_dir (); data/brasero-3.12.2/libbrasero-burn/brasero-session.c:1264:4: [3] (buffer) g_get_tmp_dir: This function is synonymous with 'getenv("TMP")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_tmp_dir (); data/brasero-3.12.2/libbrasero-burn/brasero-session.c:1336:4: [3] (buffer) g_get_tmp_dir: This function is synonymous with 'getenv("TMP")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_tmp_dir (); data/brasero-3.12.2/libbrasero-burn/brasero-session.c:2216:10: [3] (buffer) g_get_tmp_dir: This function is synonymous with 'getenv("TMP")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_tmp_dir (), data/brasero-3.12.2/libbrasero-burn/brasero-src-image.c:429:73: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. gtk_file_chooser_set_current_folder (GTK_FILE_CHOOSER (priv->file), g_get_home_dir ()); data/brasero-3.12.2/libbrasero-burn/brasero-src-image.c:435:72: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. gtk_file_chooser_set_current_folder (GTK_FILE_CHOOSER (priv->file), g_get_home_dir ()); data/brasero-3.12.2/libbrasero-burn/brasero-src-image.c:440:71: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. gtk_file_chooser_set_current_folder (GTK_FILE_CHOOSER (priv->file), g_get_home_dir ()); data/brasero-3.12.2/libbrasero-burn/brasero-sum-dialog.c:323:8: [3] (buffer) g_get_tmp_dir: This function is synonymous with 'getenv("TMP")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_tmp_dir ()); data/brasero-3.12.2/libbrasero-burn/brasero-track-data-cfg.c:3297:17: [3] (random) g_random_int: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. priv->stamp = g_random_int (); data/brasero-3.12.2/libbrasero-burn/burn-image-format.c:867:5: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_home_dir (), data/brasero-3.12.2/libbrasero-burn/burn-image-format.c:875:6: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_home_dir (), data/brasero-3.12.2/src/brasero-playlist.c:596:8: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_home_dir ()); data/brasero-3.12.2/src/brasero-project-manager.c:735:11: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_home_dir ()); data/brasero-3.12.2/src/brasero-project.c:2195:82: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. gtk_file_chooser_set_current_folder (GTK_FILE_CHOOSER (project->priv->chooser), g_get_home_dir ()); data/brasero-3.12.2/src/brasero-project.c:2744:11: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. g_get_home_dir ()); data/brasero-3.12.2/src/brasero-video-tree-model.c:1178:17: [3] (random) g_random_int: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. priv->stamp = g_random_int (); data/brasero-3.12.2/libbrasero-burn/brasero-caps-burn.c:763:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&plugin_output, data/brasero-3.12.2/libbrasero-burn/brasero-caps-burn.c:768:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&plugin_output, data/brasero-3.12.2/libbrasero-burn/brasero-caps-burn.c:813:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&plugin_input, &plugin_output, sizeof (BraseroTrackType)); data/brasero-3.12.2/libbrasero-burn/brasero-caps-plugin.c:180:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&retval->type, &caps->type, sizeof (BraseroTrackType)); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:392:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (key->name, data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:572:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (retval, BRASERO_FILE_NODE_GRAFT (node)->node->uri, len); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:584:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (ptr, escaped_name, len); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:2517:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (path + len, name, name_len); data/brasero-3.12.2/libbrasero-burn/brasero-session.c:170:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (dest, original, sizeof (BraseroSessionSetting)); data/brasero-3.12.2/libbrasero-burn/brasero-session.c:2443:10: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). gchar *tmpfile; data/brasero-3.12.2/libbrasero-burn/brasero-session.c:2447:31: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). brasero_burn_session_clean (tmpfile); data/brasero-3.12.2/libbrasero-burn/brasero-session.c:2448:11: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). g_free (tmpfile); data/brasero-3.12.2/libbrasero-burn/brasero-sum-dialog.c:426:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen (src, "r"); data/brasero-3.12.2/libbrasero-burn/brasero-track-data-cfg.c:2608:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (path, O_WRONLY|O_TRUNC); data/brasero-3.12.2/libbrasero-burn/brasero-track-data.c:361:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer, path, MIN (end, MAXPATHLEN)); data/brasero-3.12.2/libbrasero-burn/brasero-track-data.c:392:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (name + 64 - dot_len, data/brasero-3.12.2/libbrasero-burn/brasero-track-data.c:438:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name + (64 - width), data/brasero-3.12.2/libbrasero-burn/burn-debug.c:140:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "eject, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:142:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "no grace, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:144:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "dao, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:146:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "raw, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:148:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "overburn, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:150:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "burnproof, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:152:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "no tmp file, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:154:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "blank before, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:156:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "append, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:158:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "merge, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:160:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "multi, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:162:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "dummy, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:164:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "check size, "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:166:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "fast blank"); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:201:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "BIN "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:203:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "CUE "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:205:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "CDRDAO "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:207:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "CLONE "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:215:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "ISO "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:217:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "UDF "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:219:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "SYMLINK "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:221:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "Level 3 "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:223:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "JOLIET "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:225:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "VIDEO "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:227:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "DEEP "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:235:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "RAW "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:238:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "RAW (little endian)"); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:241:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "AUDIO UNDEFINED "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:244:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "DTS WAV "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:247:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "MP2 "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:250:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "AC3 "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:253:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "44100 "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:256:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "48000 "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:259:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "VIDEO UNDEFINED "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:262:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "VCD "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:265:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "Video DVD "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:268:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "Metadata Information "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:286:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Data "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:290:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Disc "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:294:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Audio "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:298:4: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "format accepts "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:301:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "files "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:303:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "pipe "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:307:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Image "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:311:4: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "format accepts "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:314:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "files "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:316:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "pipe "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:320:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Undefined"); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:351:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Data "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:355:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Disc "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:359:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Audio "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:363:4: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "format accepts "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:366:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "files "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:368:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "pipe "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:372:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Image "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:376:4: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "format accepts "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:379:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "files "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:381:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "pipe "); data/brasero-3.12.2/libbrasero-burn/burn-debug.c:385:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Undefined"); data/brasero-3.12.2/libbrasero-burn/burn-image-format.c:101:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen (path, "r"); data/brasero-3.12.2/libbrasero-burn/burn-image-format.c:151:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen (path, "r"); data/brasero-3.12.2/libbrasero-burn/burn-job.c:306:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&input, &previous->type, sizeof (BraseroTrackType)); data/brasero-3.12.2/libbrasero-burn/burn-job.c:1404:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (type, &prev_priv->type, sizeof (BraseroTrackType)); data/brasero-3.12.2/libbrasero-burn/burn-job.c:1420:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (type, &priv->type, sizeof (BraseroTrackType)); data/brasero-3.12.2/libbrasero-burn/burn-job.c:2039:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (ptr, &priv->type, sizeof (BraseroTrackType)); data/brasero-3.12.2/libbrasero-burn/burn-job.c:2066:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&priv->type, ptr, sizeof (BraseroTrackType)); data/brasero-3.12.2/libbrasero-burn/burn-mkisofs-base.c:578:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). base.grafts_fd = open (grafts_path, O_WRONLY|O_TRUNC|O_EXCL); data/brasero-3.12.2/libbrasero-burn/burn-mkisofs-base.c:588:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). base.excluded_fd = open (excluded_path, O_WRONLY|O_TRUNC|O_EXCL); data/brasero-3.12.2/libbrasero-media/brasero-media.c:389:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "file "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:392:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "CD "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:395:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "DVD "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:398:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "RAM "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:401:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "BD "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:404:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "DL "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:408:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "+ "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:411:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "- (sequential) "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:414:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "- (restricted) "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:417:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "- (jump) "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:421:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "SRM "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:424:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "POW "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:427:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "RANDOM "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:431:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "RW "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:434:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "W "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:437:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "ROM "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:441:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "closed "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:444:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "blank "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:447:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "appendable "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:450:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "protected "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:453:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "with data "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:456:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "with audio "); data/brasero-3.12.2/libbrasero-media/brasero-media.c:459:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (buffer, "Unformatted "); data/brasero-3.12.2/libbrasero-media/brasero-medium.c:1570:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer [2048]; data/brasero-3.12.2/libbrasero-media/brasero-medium.c:2754:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer + offset, data/brasero-3.12.2/libbrasero-media/brasero-medium.c:2777:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer [256]; /* mmc specs advise no more than 160 */ data/brasero-3.12.2/libbrasero-media/burn-iso9660.c:378:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (ctx->spare_record, data/brasero-3.12.2/libbrasero-media/burn-iso9660.c:385:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (ctx->spare_record + part_one, data/brasero-3.12.2/libbrasero-media/burn-iso9660.c:446:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (file->name, record->id, record->id_size); data/brasero-3.12.2/libbrasero-media/burn-iso9660.c:497:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (directory->name, record->id, record->id_size); data/brasero-3.12.2/libbrasero-media/burn-iso9660.c:619:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (copy, record, record->record_size); data/brasero-3.12.2/libbrasero-media/burn-iso9660.c:647:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (copy, record, record->record_size); data/brasero-3.12.2/libbrasero-media/burn-iso9660.c:830:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (record_name, record->id, record->id_size); data/brasero-3.12.2/libbrasero-media/burn-volume-source.c:239:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen (path, "r"); data/brasero-3.12.2/libbrasero-media/scsi-cam.c:119:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (cam_ccb.csio.cdb_io.cdb_bytes, cmd->cmd, data/brasero-3.12.2/libbrasero-media/scsi-cam.c:180:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (path, flags); data/brasero-3.12.2/libbrasero-media/scsi-netbsd.c:86:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(req->cmd, cmd->cmd, req->cmdlen); data/brasero-3.12.2/libbrasero-media/scsi-netbsd.c:173:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (rdevnode, flags); data/brasero-3.12.2/libbrasero-media/scsi-read-toc-pma-atip.h:344:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pack_count [16]; data/brasero-3.12.2/libbrasero-media/scsi-read-toc-pma-atip.h:345:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char last_seqnum [8]; data/brasero-3.12.2/libbrasero-media/scsi-read-toc-pma-atip.h:346:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char language_code [8]; data/brasero-3.12.2/libbrasero-media/scsi-read-track-information.c:54:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). uchar open :1; /* MMC5 field only */ data/brasero-3.12.2/libbrasero-media/scsi-read-track-information.c:71:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). uchar open :1; data/brasero-3.12.2/libbrasero-media/scsi-sg.c:182:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (path, flags); data/brasero-3.12.2/libbrasero-media/scsi-uscsi.c:213:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (rawdisk, flags); data/brasero-3.12.2/libbrasero-media/scsi-uscsi.c:216:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (path, flags); data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:354:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd_out = open (image, data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:382:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd_in = open (song_path, O_RDONLY); data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:412:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd_out = open (toc, data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:487:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (path, O_WRONLY | O_CREAT | O_TRUNC, S_IRUSR | S_IWUSR); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:503:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "# created by brasero\n"); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:509:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "MCN=\t\n"); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:527:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Albumperformer=\t\n"); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:656:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Pre-emphasis=\tno\n"); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:662:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Channels=\t2\n"); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:668:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Copy_permitted=\tyes\n"); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:674:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Endianess=\tlittle\n"); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:680:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Index=\t\t0\n"); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:476:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (path, O_WRONLY | O_CREAT | O_TRUNC, S_IRUSR | S_IWUSR); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:492:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "# created by brasero\n"); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:498:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "MCN=\t\n"); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:516:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Albumperformer=\t\n"); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:645:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Pre-emphasis=\tno\n"); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:651:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Channels=\t2\n"); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:657:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Copy_permitted=\tyes\n"); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:663:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Endianess=\tlittle\n"); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:669:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (buffer, "Index=\t\t0\n"); data/brasero-3.12.2/plugins/checksum/burn-checksum-files.c:116:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen (path, "r"); data/brasero-3.12.2/plugins/checksum/burn-checksum-files.c:582:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). priv->file = fopen (priv->sums_path, "w"); data/brasero-3.12.2/plugins/checksum/burn-checksum-image.c:296:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd_in = open (path, O_RDONLY); data/brasero-3.12.2/plugins/checksum/burn-volume-read.c:204:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer + buffer_offset, data/brasero-3.12.2/plugins/checksum/burn-volume-read.c:220:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer + buffer_offset, data/brasero-3.12.2/plugins/checksum/burn-volume-read.c:254:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer + buffer_offset, data/brasero-3.12.2/plugins/checksum/burn-volume-read.c:266:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer, handle->buffer + handle->offset, line_len); data/brasero-3.12.2/plugins/checksum/burn-volume-read.c:296:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer + buffer_offset, data/brasero-3.12.2/plugins/checksum/burn-volume-read.c:322:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer + buffer_offset, data/brasero-3.12.2/plugins/dvdcss/burn-dvdcss.c:411:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). output_fd = fopen (output, "w"); data/brasero-3.12.2/plugins/libburnia/burn-libburn-common.c:201:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char err_sev [80]; data/brasero-3.12.2/plugins/libburnia/burn-libburn-common.c:202:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char err_txt [BURN_MSGS_MESSAGE_LEN] = {0}; data/brasero-3.12.2/plugins/libburnia/burn-libburn.c:197:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (current_pvd, buffer, i << 11); data/brasero-3.12.2/plugins/libburnia/burn-libburn.c:291:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (path, O_RDONLY); data/brasero-3.12.2/plugins/libburnia/burn-libburn.c:595:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reasons [BURN_REASONS_LEN]; data/brasero-3.12.2/plugins/libburnia/burn-libburn.c:601:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prof_name [80]; data/brasero-3.12.2/plugins/libburnia/burn-libburn.c:670:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("/dev/null", O_RDONLY); data/brasero-3.12.2/plugins/libburnia/burn-libisofs.c:239:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen (output, "w"); data/brasero-3.12.2/plugins/local-track/burn-local-image.c:190:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen (priv->checksum_path, "r"); data/brasero-3.12.2/plugins/local-track/burn-local-image.c:620:16: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). GFile *file, *tmpfile; data/brasero-3.12.2/plugins/local-track/burn-local-image.c:648:53: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). priv->dest_list = g_slist_append (priv->dest_list, tmpfile); data/brasero-3.12.2/plugins/transcode/burn-transcode.c:1019:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer [buffer_size]; data/brasero-3.12.2/plugins/transcode/burn-transcode.c:1228:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (output, O_WRONLY | O_CREAT | O_APPEND, S_IRWXU | S_IRGRP | S_IROTH); data/brasero-3.12.2/plugins/vcdimager/burn-vcdimager.c:285:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buffer, "track-%i", i); data/brasero-3.12.2/plugins/vcdimager/burn-vcdimager.c:309:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buffer, "playlist-%i", i); data/brasero-3.12.2/plugins/vcdimager/burn-vcdimager.c:330:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buffer, "track-%i", i); data/brasero-3.12.2/src/brasero-project-parse.c:966:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen (path, "w+"); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:381:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). extension_len = strlen (dot); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:555:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). uri_len += strlen (escaped_name) + 1; data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:567:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (BRASERO_FILE_NODE_GRAFT (node)->node->uri); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:583:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (escaped_name); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:611:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (path); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:663:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). uri += strlen (parent); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:1155:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (BRASERO_FILE_NODE_NAME (node)) > 64) data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:1545:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (BRASERO_FILE_NODE_NAME (node)) > 64) data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:1579:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (name) < 1) { data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:1637:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (name) > 64) data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:1698:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). parent_len = strlen (parent_uri); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:1738:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (BRASERO_FILE_NODE_NAME (node)) > 64) data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:1967:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). parent_len = strlen (parent_uri); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:2513:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_len = strlen (name); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:3237:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (BRASERO_FILE_NODE_NAME (parent)) > 64) data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:3468:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). parent_uri_len = strlen (parent_uri); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:3605:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (graft->path); data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:4072:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (new_name) > 64) data/brasero-3.12.2/libbrasero-burn/brasero-data-project.c:4288:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (name_dest) > 64) data/brasero-3.12.2/libbrasero-burn/brasero-data-vfs.c:315:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). uri_len = strlen (uri); data/brasero-3.12.2/libbrasero-burn/brasero-data-vfs.c:320:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). target_len = strlen (target_uri); data/brasero-3.12.2/libbrasero-burn/brasero-data-vfs.c:343:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). parent_len = strlen (parent_uri); data/brasero-3.12.2/libbrasero-burn/brasero-data-vfs.c:368:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). next_len = strlen (next_uri); data/brasero-3.12.2/libbrasero-burn/brasero-filtered-uri.c:141:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (key_uri); data/brasero-3.12.2/libbrasero-burn/brasero-filtered-uri.c:161:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (row_uri); data/brasero-3.12.2/libbrasero-burn/brasero-session.c:1388:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (int) strlen (path) - 3, data/brasero-3.12.2/libbrasero-burn/brasero-session.c:1396:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (int) strlen (path) - 3, data/brasero-3.12.2/libbrasero-burn/brasero-session.c:1591:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (label) > 32) { data/brasero-3.12.2/libbrasero-burn/brasero-session.c:2152:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (message); data/brasero-3.12.2/libbrasero-burn/brasero-src-image.c:271:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (string) > strlen (_("Click here to select a disc _image")) + 5) data/brasero-3.12.2/libbrasero-burn/brasero-src-image.c:271:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (string) > strlen (_("Click here to select a disc _image")) + 5) data/brasero-3.12.2/libbrasero-burn/brasero-sum-dialog.c:389:6: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int read; data/brasero-3.12.2/libbrasero-burn/brasero-sum-dialog.c:444:6: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read) data/brasero-3.12.2/libbrasero-burn/brasero-sum-dialog.c:445:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). buffer [read] = '\0'; data/brasero-3.12.2/libbrasero-burn/brasero-track-data.c:355:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end = strlen (path); data/brasero-3.12.2/libbrasero-burn/burn-image-format.c:105:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (int) strlen (path) - 3, data/brasero-3.12.2/libbrasero-burn/burn-image-format.c:155:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (int) strlen (path) - 3, data/brasero-3.12.2/libbrasero-burn/burn-image-format.c:208:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). retval = g_strndup (path, strlen (path) - 4); data/brasero-3.12.2/libbrasero-burn/burn-image-format.c:902:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (dot && strlen (dot) < 5 && strlen (dot) > 1) { data/brasero-3.12.2/libbrasero-burn/burn-image-format.c:902:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (dot && strlen (dot) < 5 && strlen (dot) > 1) { data/brasero-3.12.2/libbrasero-burn/burn-mkisofs-base.c:107:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (filepath); data/brasero-3.12.2/libbrasero-burn/burn-mkisofs-base.c:442:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp = g_strndup (path, strlen (path) - strlen (G_DIR_SEPARATOR_S)); data/brasero-3.12.2/libbrasero-burn/burn-mkisofs-base.c:442:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp = g_strndup (path, strlen (path) - strlen (G_DIR_SEPARATOR_S)); data/brasero-3.12.2/libbrasero-burn/burn-mkisofs-base.c:455:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp = g_strndup (link_path, strlen (link_path) - strlen (G_DIR_SEPARATOR_S)); data/brasero-3.12.2/libbrasero-burn/burn-mkisofs-base.c:455:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp = g_strndup (link_path, strlen (link_path) - strlen (G_DIR_SEPARATOR_S)); data/brasero-3.12.2/libbrasero-media/burn-volume-source.h:51:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). BraseroVolSrcReadFunc read; data/brasero-3.12.2/libbrasero-media/burn-volume-source.h:63:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). vol_MACRO->read (vol_MACRO, buffer_MACRO, num_MACRO, error_MACRO) data/brasero-3.12.2/libbrasero-media/burn-volume.c:285:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (ptr); data/brasero-3.12.2/libbrasero-media/scsi-netbsd.c:172:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rdevnode = g_strdup_printf ("/dev/r%s", path + strlen ("/dev/")); data/brasero-3.12.2/libbrasero-utils/brasero-io.c:721:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). uri + strlen (parent_uri), data/brasero-3.12.2/libbrasero-utils/brasero-io.c:784:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (target_uri); data/brasero-3.12.2/nautilus/nautilus-burn-bar.c:117:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (title_str) > 32) { data/brasero-3.12.2/nautilus/nautilus-burn-bar.c:286:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_len = 32 - strlen (label) - length; data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:174:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read_bytes = read (fd, buffer + total, (bytes - total)); data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:426:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (write (fd_out, line, strlen (line)) < 0) { data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:443:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (write (fd_out, line, strlen (line)) < 0) { data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:474:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (write (fd_out, line, strlen (line)) < 0) { data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:488:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (write (fd_out, line, strlen (line)) < 0) { data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:503:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (write (fd_out, line, strlen (line)) < 0) { data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:518:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (write (fd_out, line, strlen (line)) < 0) { data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:533:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (write (fd_out, line, strlen (line)) < 0) { data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:551:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (write (fd_out, line, strlen (line)) < 0) { data/brasero-3.12.2/plugins/audio2cue/burn-audio2cue.c:590:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (write (fd_out, line, strlen (line)) < 0) { data/brasero-3.12.2/plugins/cdrkit/burn-readom.c:80:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos += strlen ("addr:"); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:504:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:510:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:521:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:528:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:549:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:574:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:599:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:624:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:631:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:638:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:650:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:657:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:663:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:669:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:675:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:681:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrkit/burn-wodim.c:695:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:493:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:499:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:510:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:517:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:538:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:563:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:588:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:613:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:620:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:627:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:639:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:646:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:652:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:658:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:664:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:670:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (buffer); data/brasero-3.12.2/plugins/cdrtools/burn-cdrecord.c:684:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen (string); data/brasero-3.12.2/plugins/cdrtools/burn-readcd.c:80:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos += strlen ("addr:"); data/brasero-3.12.2/plugins/checksum/burn-checksum-files.c:186:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen (checksum_string), data/brasero-3.12.2/plugins/checksum/burn-checksum-files.c:210:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen (graft_path + 1), data/brasero-3.12.2/plugins/checksum/burn-checksum-files.c:354:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (graft->path + 1); data/brasero-3.12.2/plugins/checksum/burn-checksum-files.c:365:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). written_bytes = fwrite (line, 1, strlen (line), priv->file); data/brasero-3.12.2/plugins/checksum/burn-checksum-files.c:366:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (written_bytes != strlen (line)) { data/brasero-3.12.2/plugins/checksum/burn-checksum-image.c:107:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read_bytes = read (fd, buffer + total, (bytes - total)); data/brasero-3.12.2/plugins/dvdcss/burn-dvdcss.c:252:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp (file->name + strlen (file->name) - 6, ".VOB", 4)) { data/brasero-3.12.2/plugins/growisofs/burn-growisofs.c:160:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). line += strlen ("Total extents scheduled to be written = "); data/brasero-3.12.2/plugins/libburnia/burn-libburn.c:161:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bytes = read (data->fd, buffer + total, size - total); data/brasero-3.12.2/plugins/libburnia/burn-libisofs.c:417:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len_a = strlen (graft_a->path); data/brasero-3.12.2/plugins/libburnia/burn-libisofs.c:418:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len_b = strlen (graft_b->path); data/brasero-3.12.2/plugins/libburnia/burn-libisofs.c:661:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp [strlen (tmp) - 1] = '\0'; data/brasero-3.12.2/plugins/local-track/burn-local-image.c:157:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). uri + strlen (parent), data/brasero-3.12.2/src/brasero-plugin-manager-ui.c:510:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). key_len = strlen (case_normalized_key); data/brasero-3.12.2/src/brasero-project-name.c:257:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (title_str) > 32) { data/brasero-3.12.2/src/brasero-project-name.c:328:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (title_str) > 32) { data/brasero-3.12.2/src/brasero-project-name.c:340:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (title_str && strlen (title_str) > 32) { data/brasero-3.12.2/src/brasero-project-name.c:369:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). max_len = 32 - strlen (label) - length; data/brasero-3.12.2/src/brasero-project-parse.c:973:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). written = fwrite (title, strlen (title), 1, file); data/brasero-3.12.2/src/brasero-project-parse.c:992:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). written = fwrite (title, 1, strlen (title), file); data/brasero-3.12.2/src/brasero-project-parse.c:993:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (written != strlen (title)) data/brasero-3.12.2/src/brasero-project-parse.c:1004:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). written = fwrite (time, 1, strlen (time), file); data/brasero-3.12.2/src/brasero-project-parse.c:1005:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (written != strlen (time)) { data/brasero-3.12.2/src/brasero-project-parse.c:1022:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). written = fwrite (string, 1, strlen (string), file); data/brasero-3.12.2/src/brasero-project-parse.c:1023:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (written != strlen (string)) { data/brasero-3.12.2/src/brasero-project-parse.c:1035:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). written = fwrite (uri, 1, strlen (uri), file); data/brasero-3.12.2/src/brasero-project-parse.c:1036:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (written != strlen (uri)) { data/brasero-3.12.2/src/brasero-rename.c:131:82: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return g_strdup_printf ("%.*s%s", (int) (occurrence - name), name, occurrence + strlen (text)); data/brasero-3.12.2/src/brasero-rename.c:152:91: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return g_strdup_printf ("%.*s%s%s", (int) (occurrence - name), name, joker, occurrence + strlen (text)); ANALYSIS SUMMARY: Hits = 353 Lines analyzed = 151515 in approximately 3.15 seconds (48109 lines/second) Physical Source Lines of Code (SLOC) = 104396 Hits@level = [0] 39 [1] 128 [2] 179 [3] 20 [4] 26 [5] 0 Hits@level+ = [0+] 392 [1+] 353 [2+] 225 [3+] 46 [4+] 26 [5+] 0 Hits/KSLOC@level+ = [0+] 3.75493 [1+] 3.38136 [2+] 2.15525 [3+] 0.44063 [4+] 0.249052 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.