Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/test/testGenericFunctions.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ConstTimesFunction.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ReverseExponential.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/LikelihoodFunctional.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionProduct.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/RungeKuttaClassicalSolver.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/PeriodicRectangular.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ParameterSum.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/IncompleteGamma.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Sin.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Exponential.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ConstPlusParameter.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/LogisticFunction.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/GammaDistribution.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/NonrelativisticBW.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ConstOverFunction.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Cos.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ClebschGordanCoefficientSet.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ConstTimesParameter.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ParameterComposition.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionSum.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionTimesParameter.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/LogGamma.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/BivariateGaussian.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/VoigtProfile.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ConstMinusFunction.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ConstPlusFunction.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ParameterNegation.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FloatingConstant.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Square.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ParameterProduct.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/KroneckerDelta.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/PtRelFcn.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/HermitePolynomial.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/InterpolatingPolynomial.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/AbsFunctional.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Abs.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/AbsParameter.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Power.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/StepDoublingRKStepper.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ParameterDifference.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ConstMinusParameter.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/AnalyticConvolution.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/PhaseSpace.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/EfficiencyFunctional.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionNegation.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/PuncturedSmearedExp.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/RelativisticBW.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FixedConstant.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Parameter.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Erf.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Rectangular.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionNoop.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/X.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Exp.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/AdaptiveRKStepper.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Ln.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionDifference.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/EmbeddedRKStepper.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionConvolution.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ParameterQuotient.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ACos.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Landau.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ATan.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/TrivariateGaussian.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Mod.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Tan.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionNumDeriv.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ConstOverParameter.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/RKIntegrator.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Variable.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Theta.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Gaussian.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/RCBase.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/DefiniteIntegral.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ASin.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/AssociatedLaguerre.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Sqrt.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/CumulativeChiSquare.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ClassicalSolver.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/BetaDistribution.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/SimpleRKStepper.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/ArrayFunction.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Gamma.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/Sigma.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionPlusParameter.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionDirectProduct.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionQuotient.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/FunctionComposition.cc
Examining data/clhep-2.1.4.1+dfsg/GenericFunctions/src/AbsFunction.cc
Examining data/clhep-2.1.4.1+dfsg/Random/Random/Stat.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RanshiEngine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandBit.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandomFunc.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/TripleRand.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandBinomial.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/SeedTable.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandExponential.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandStudentT.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandChiSquare.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/NonRandomEngine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandLandau.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/Random.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandPoissonT.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/StaticRandomStates.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/Randomize.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandEngine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandExpZiggurat.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/DRand48Engine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandGaussT.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandomEngine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/engineIDulong.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/Hurd160Engine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RanluxEngine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandGeneral.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandBreitWigner.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandGaussZiggurat.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandFlat.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/MTwistEngine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/JamesRandom.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandPoisson.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandGamma.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/DualRand.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/Ranlux64Engine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/Hurd288Engine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RanecuEngine.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandSkewNormal.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandGaussQ.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/EngineFactory.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandGauss.h
Examining data/clhep-2.1.4.1+dfsg/Random/Random/RandPoissonQ.h
Examining data/clhep-2.1.4.1+dfsg/Random/test/gaussSmall.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testEngineCopy.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testAnonymousEngineRestore.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/gaussSpeed.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testDistCopy.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testVectorSave.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testBug73093.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testInstanceRestore.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testRandom.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testSaveEngineStatus.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testZiggurat.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testRandDists.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testRanecuSequence.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/ranRestoreTest.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testSaveSharedEngines.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/testStaticStreamSave.cc
Examining data/clhep-2.1.4.1+dfsg/Random/test/pretend.h
Examining data/clhep-2.1.4.1+dfsg/Random/test/testBug58950.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandEngine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandExponential.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandPoisson.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/DualRand.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/Hurd288Engine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RanshiEngine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/DoubConv.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandGeneral.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandPoissonT.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/NonRandomEngine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/gammln.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/Ranlux64Engine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandPoissonQ.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandLandau.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/EngineFactory.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandGauss.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandBinomial.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/engineIDulong.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandGaussQ.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandBreitWigner.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/MTwistEngine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/flatToGaussian.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandStudentT.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandGamma.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RanluxEngine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandGaussZiggurat.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/Hurd160Engine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/StaticRandomStates.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandSkewNormal.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandGaussT.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandBit.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/TripleRand.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/JamesRandom.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandomEngine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/erfQ.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/Random.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandExpZiggurat.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandChiSquare.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RanecuEngine.cc
Examining data/clhep-2.1.4.1+dfsg/Random/src/RandFlat.cc
Examining data/clhep-2.1.4.1+dfsg/Evaluator/Evaluator/Evaluator.h
Examining data/clhep-2.1.4.1+dfsg/Evaluator/test/testBug66214.cc
Examining data/clhep-2.1.4.1+dfsg/Evaluator/test/testBug90848.cc
Examining data/clhep-2.1.4.1+dfsg/Evaluator/test/testEvaluator.cc
Examining data/clhep-2.1.4.1+dfsg/Evaluator/src/setStdMath.cc
Examining data/clhep-2.1.4.1+dfsg/Evaluator/src/setSystemOfUnits.cc
Examining data/clhep-2.1.4.1+dfsg/Evaluator/src/Evaluator.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/Boost.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/AxisAngle.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/Sqr.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/Rotation.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/EulerAngles.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/RotationZ.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/RotationX.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/RotationInterfaces.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/BoostY.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/LorentzVector.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/ZMxpv.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/RotationY.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/LorentzRotation.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/BoostZ.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/TwoVector.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/ThreeVector.h
Examining data/clhep-2.1.4.1+dfsg/Vector/Vector/BoostX.h
Examining data/clhep-2.1.4.1+dfsg/Vector/test/testSubscripts.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/test/testLorentzVector.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/test/testRotation.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/test/eulerTest.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/test/testThreeVector.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/test/eulerProb.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationXYZ.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationIO.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/ThreeVectorR.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/ThreeVector.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/LorentzVectorB.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/ZMinput.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/LorentzVectorC.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/AxisAngle.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/LorentzVectorR.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/EulerAngles.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationL.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/SpaceVector.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/LorentzVectorL.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationX.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationE.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/Boost.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/LorentzVector.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/Rotation.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationY.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/LorentzRotationD.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/SpaceVectorR.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/TwoVector.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/SpaceVectorP.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/BoostZ.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/BoostX.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/LorentzVectorK.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationC.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/BoostY.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationA.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/LorentzRotation.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/LorentzRotationC.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/ZMxpv.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationZ.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationInterfaces.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/RotationP.cc
Examining data/clhep-2.1.4.1+dfsg/Vector/src/SpaceVectorD.cc
Examining data/clhep-2.1.4.1+dfsg/Cast/Cast/itos.h
Examining data/clhep-2.1.4.1+dfsg/Cast/src/itos.cc
Examining data/clhep-2.1.4.1+dfsg/Geometry/Geometry/Vector3D.h
Examining data/clhep-2.1.4.1+dfsg/Geometry/Geometry/Transform3D.h
Examining data/clhep-2.1.4.1+dfsg/Geometry/Geometry/Plane3D.h
Examining data/clhep-2.1.4.1+dfsg/Geometry/Geometry/BasicVector3D.h
Examining data/clhep-2.1.4.1+dfsg/Geometry/Geometry/Normal3D.h
Examining data/clhep-2.1.4.1+dfsg/Geometry/Geometry/Point3D.h
Examining data/clhep-2.1.4.1+dfsg/Geometry/test/testTransform3D.cc
Examining data/clhep-2.1.4.1+dfsg/Geometry/test/testBug6740.cc
Examining data/clhep-2.1.4.1+dfsg/Geometry/test/testBasicVector3D.cc
Examining data/clhep-2.1.4.1+dfsg/Geometry/src/Normal3D.cc
Examining data/clhep-2.1.4.1+dfsg/Geometry/src/Vector3D.cc
Examining data/clhep-2.1.4.1+dfsg/Geometry/src/Transform3D.cc
Examining data/clhep-2.1.4.1+dfsg/Geometry/src/Plane3D.cc
Examining data/clhep-2.1.4.1+dfsg/Geometry/src/Point3D.cc
Examining data/clhep-2.1.4.1+dfsg/Geometry/src/BasicVector3D.cc
Examining data/clhep-2.1.4.1+dfsg/Units/Units/GlobalPhysicalConstants.h
Examining data/clhep-2.1.4.1+dfsg/Units/Units/PhysicalConstants.h
Examining data/clhep-2.1.4.1+dfsg/Units/Units/SystemOfUnits.h
Examining data/clhep-2.1.4.1+dfsg/Units/Units/GlobalSystemOfUnits.h
Examining data/clhep-2.1.4.1+dfsg/Units/test/testUnits.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/Matrix/Matrix.h
Examining data/clhep-2.1.4.1+dfsg/Matrix/Matrix/Pile.h
Examining data/clhep-2.1.4.1+dfsg/Matrix/Matrix/GenMatrix.h
Examining data/clhep-2.1.4.1+dfsg/Matrix/Matrix/DiagMatrix.h
Examining data/clhep-2.1.4.1+dfsg/Matrix/Matrix/Vector.h
Examining data/clhep-2.1.4.1+dfsg/Matrix/Matrix/SymMatrix.h
Examining data/clhep-2.1.4.1+dfsg/Matrix/test/testInversion.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/test/testMatrix.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/test/testBug7328.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/test/testBug6181.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/test/testBug6176.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/src/SymMatrix.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/src/MatrixLinear.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/src/GenMatrix.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/src/Vector.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/src/DiagMatrix.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/src/MatrixEqRotation.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/src/Matrix.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/src/SymMatrixInvert.cc
Examining data/clhep-2.1.4.1+dfsg/Matrix/src/MatrixInvert.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMexception.h
Examining data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMthrow.h
Examining data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMexHandler.h
Examining data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMexClassInfo.h
Examining data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMexLogger.h
Examining data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMexAction.h
Examining data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMerrno.h
Examining data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMexSeverity.h
Examining data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMexLogResult.h
Examining data/clhep-2.1.4.1+dfsg/Exceptions/test/testzmex.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/test/excDblThrow.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/test/exctest2.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/test/exctest1.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/test/exctestNothrow.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/test/testThrowFrom.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/test/exctest3.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/test/exctest4.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/test/testExceptions.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/src/ZMexClassInfo.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/src/ZMexHandler.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/src/ZMexLogger.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/src/ZMexception.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/src/ZMerrno.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/src/ZMthrow.cc
Examining data/clhep-2.1.4.1+dfsg/Exceptions/src/ZMexSeverity.cc
Examining data/clhep-2.1.4.1+dfsg/Fields/test/testXF.cc
Examining data/clhep-2.1.4.1+dfsg/Fields/Fields/XF.h
Examining data/clhep-2.1.4.1+dfsg/Fields/src/XF.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/test/testWeakPtr.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/test/testIsConvertible.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/test/testIsSame.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtrConvertible.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/test/testNoncopyable.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/test/testCategories.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/test/testPrimaryTraits.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtrBasic.cc
Examining data/clhep-2.1.4.1+dfsg/Utility/Utility/noncopyable.h
Examining data/clhep-2.1.4.1+dfsg/Utility/Utility/keywords.h
Examining data/clhep-2.1.4.1+dfsg/Utility/Utility/type_traits.h
Examining data/clhep-2.1.4.1+dfsg/Utility/Utility/memory.h
Examining data/clhep-2.1.4.1+dfsg/RandomObjects/test/testVectorDists.cc
Examining data/clhep-2.1.4.1+dfsg/RandomObjects/RandomObjects/RandMultiGauss.h
Examining data/clhep-2.1.4.1+dfsg/RandomObjects/RandomObjects/RandomVector.h
Examining data/clhep-2.1.4.1+dfsg/RandomObjects/src/RandMultiGauss.cc
Examining data/clhep-2.1.4.1+dfsg/RandomObjects/src/RandomVector.cc
Examining data/clhep-2.1.4.1+dfsg/RefCount/src/ZMuseCount.cc
Examining data/clhep-2.1.4.1+dfsg/RefCount/RefCount/ZMuseCount.h
Examining data/clhep-2.1.4.1+dfsg/RefCount/RefCount/ZMhandleTo.h
FINAL RESULTS:
data/clhep-2.1.4.1+dfsg/Evaluator/src/Evaluator.cc:621:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s->theExpression, expression);
data/clhep-2.1.4.1+dfsg/Random/Random/RandomFunc.h:25:17: [3] (random) drand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
extern double drand48(void);
data/clhep-2.1.4.1+dfsg/Random/Random/RandomFunc.h:27:27: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
extern unsigned short * seed48(unsigned short int [3]);
data/clhep-2.1.4.1+dfsg/Random/Random/RandomFunc.h:35:17: [3] (random) drand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
extern double drand48(void);
data/clhep-2.1.4.1+dfsg/Random/Random/RandomFunc.h:37:27: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
extern unsigned short * seed48(unsigned short int [3]);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:137:28: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
unsigned short* cseed = seed48(dummy);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:144:6: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
seed48(dummy);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:184:6: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
seed48(cseed);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:191:28: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
unsigned short* cseed = seed48(dummy);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:201:4: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
seed48(dummy);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:209:12: [3] (random) drand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
num = drand48();
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:233:28: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
unsigned short* cseed = seed48(dummy);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:242:4: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
seed48(dummy);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:251:27: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
unsigned short* cseed = seed48(dummy);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:256:3: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
seed48(dummy);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:327:4: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
seed48(cseed);
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:350:3: [3] (random) seed48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
seed48(cseed);
data/clhep-2.1.4.1+dfsg/Random/src/RandEngine.cc:129:4: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand( int(seed) );
data/clhep-2.1.4.1+dfsg/Evaluator/src/Evaluator.cc:65:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char sss[MAX_N_PAR+2] = "012345";
data/clhep-2.1.4.1+dfsg/Evaluator/test/testEvaluator.cc:17:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char exp[240];
data/clhep-2.1.4.1+dfsg/Exceptions/Exceptions/ZMexSeverity.h:76:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char ZMexSeverityLetter[ ZMexSEVERITYenumLAST ];
data/clhep-2.1.4.1+dfsg/Exceptions/src/ZMexSeverity.cc:30:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char ZMexSeverityLetter[ ZMexSEVERITYenumLAST ] = {
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:262:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/DRand48Engine.cc:313:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/DoubConv.cc:27:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char b[8];
data/clhep-2.1.4.1+dfsg/Random/src/DoubConv.cc:108:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char bytes[8];
data/clhep-2.1.4.1+dfsg/Random/src/DualRand.cc:252:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/DualRand.cc:293:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/DualRand.cc:429:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/DualRand.cc:430:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/DualRand.cc:516:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/DualRand.cc:517:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/Hurd160Engine.cc:290:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/Hurd160Engine.cc:331:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/Hurd288Engine.cc:310:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/Hurd288Engine.cc:351:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/JamesRandom.cc:346:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/JamesRandom.cc:388:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/MTwistEngine.cc:313:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/MTwistEngine.cc:335:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/RandEngine.cc:397:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/RandEngine.cc:439:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/RandFlat.cc:143:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char setword[40]; // the longest, staticFirstUnusedBit: has length 21
data/clhep-2.1.4.1+dfsg/Random/src/RandGauss.cc:214:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char setword[40]; // the longest, staticFirstUnusedBit: has length 21
data/clhep-2.1.4.1+dfsg/Random/src/RanecuEngine.cc:317:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/RanecuEngine.cc:359:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/Ranlux64Engine.cc:656:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/Ranlux64Engine.cc:698:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/RanluxEngine.cc:540:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/RanluxEngine.cc:586:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/RanshiEngine.cc:290:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/RanshiEngine.cc:331:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/TripleRand.cc:250:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/TripleRand.cc:291:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/TripleRand.cc:436:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/TripleRand.cc:437:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/TripleRand.cc:525:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char beginMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/src/TripleRand.cc:526:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endMarker [MarkerLen];
data/clhep-2.1.4.1+dfsg/Random/test/testBug73093.cc:27:26: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
seed = atol("9899876543210000");
data/clhep-2.1.4.1+dfsg/Random/test/testBug73093.cc:28:20: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mult = mult + atol("120034020050070");
data/clhep-2.1.4.1+dfsg/Utility/test/testCategories.cc:444:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
assert(evaluate<char const [2]>() == cat_arr);
data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc:2691:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
shared_ptr<file> fopen(char const * name, char const * mode);
data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc:2703:27: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
shared_ptr<file> pf = fopen("name", "mode");
data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc:3276:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
shared_ptr<file> fopen(char const *, char const *)
data/clhep-2.1.4.1+dfsg/Vector/src/SpaceVector.cc:293:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char i[8];
data/clhep-2.1.4.1+dfsg/Evaluator/src/Evaluator.cc:54:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(n=strlen(pointer);n>0;n--) if (!isspace(*(pointer+n-1))) break
data/clhep-2.1.4.1+dfsg/Evaluator/src/Evaluator.cc:99:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pchar exp_end = exp_begin + strlen(exp_begin) - 1;
data/clhep-2.1.4.1+dfsg/Evaluator/src/Evaluator.cc:620:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s->theExpression = new char[strlen(expression)+1];
data/clhep-2.1.4.1+dfsg/Evaluator/src/Evaluator.cc:623:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s->theExpression+strlen(expression)-1,
data/clhep-2.1.4.1+dfsg/Random/test/testBug58950.cc:58:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
in.read((char *)(&rvals), 2*sizeof(long));
data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc:2728:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void read(void * data, long size);
data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc:2743:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
f.read(0, 152);
data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc:2747:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
f2.read(0, 894);
data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc:3313:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void read(void *, long size)
data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc:3329:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
file::read(void * data, long size)
data/clhep-2.1.4.1+dfsg/Utility/test/testSharedPtr.cc:3331:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
pimpl_->read(data, size);
ANALYSIS SUMMARY:
Hits = 76
Lines analyzed = 71701 in approximately 1.89 seconds (37953 lines/second)
Physical Source Lines of Code (SLOC) = 46989
Hits@level = [0] 19 [1] 11 [2] 47 [3] 17 [4] 1 [5] 0
Hits@level+ = [0+] 95 [1+] 76 [2+] 65 [3+] 18 [4+] 1 [5+] 0
Hits/KSLOC@level+ = [0+] 2.02175 [1+] 1.6174 [2+] 1.3833 [3+] 0.383068 [4+] 0.0212816 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.