Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/garlic-1.6/key_release.c
Examining data/garlic-1.6/fix_chain.c
Examining data/garlic-1.6/comm_fading.c
Examining data/garlic-1.6/wheel_bottom_view.c
Examining data/garlic-1.6/hyphob_function1.c
Examining data/garlic-1.6/hyphob_function2.c
Examining data/garlic-1.6/hyphob_function3.c
Examining data/garlic-1.6/hyphob_function4.c
Examining data/garlic-1.6/hyphob_function5.c
Examining data/garlic-1.6/hyphob_function6.c
Examining data/garlic-1.6/hyphob_function7.c
Examining data/garlic-1.6/extract_c.c
Examining data/garlic-1.6/extract_h.c
Examining data/garlic-1.6/extract_n.c
Examining data/garlic-1.6/extract_o.c
Examining data/garlic-1.6/plane_extent.c
Examining data/garlic-1.6/count_residues.c
Examining data/garlic-1.6/select_sphere.c
Examining data/garlic-1.6/init_membrane.c
Examining data/garlic-1.6/warnmsg.c
Examining data/garlic-1.6/add_three_colors.c
Examining data/garlic-1.6/fading_shift.c
Examining data/garlic-1.6/read_file.c
Examining data/garlic-1.6/init_buttons.c
Examining data/garlic-1.6/center.c
Examining data/garlic-1.6/interpolate_color.c
Examining data/garlic-1.6/color.c
Examining data/garlic-1.6/special_select.c
Examining data/garlic-1.6/plot_mouse.c
Examining data/garlic-1.6/extract_ncac.c
Examining data/garlic-1.6/bond_style3_quad1.c
Examining data/garlic-1.6/bond_style3_quad2.c
Examining data/garlic-1.6/bond_style3_quad3.c
Examining data/garlic-1.6/bond_style3_quad4.c
Examining data/garlic-1.6/extract_necz.c
Examining data/garlic-1.6/sphere_slab.c
Examining data/garlic-1.6/hybond_style.c
Examining data/garlic-1.6/rotation_angle.c
Examining data/garlic-1.6/extent.c
Examining data/garlic-1.6/generate_hybonds.c
Examining data/garlic-1.6/average_hydrophobicity.c
Examining data/garlic-1.6/move_front_fading.c
Examining data/garlic-1.6/draw_top.c
Examining data/garlic-1.6/select_2c3.c
Examining data/garlic-1.6/select_3c4.c
Examining data/garlic-1.6/select_3c5.c
Examining data/garlic-1.6/select_3c6.c
Examining data/garlic-1.6/is_part_of_ring.c
Examining data/garlic-1.6/select_4c5.c
Examining data/garlic-1.6/select_4c6.c
Examining data/garlic-1.6/select_4c7.c
Examining data/garlic-1.6/select_4c9.c
Examining data/garlic-1.6/select_3p5.c
Examining data/garlic-1.6/select_5c6.c
Examining data/garlic-1.6/select_5c7.c
Examining data/garlic-1.6/select_5c9.c
Examining data/garlic-1.6/select_4p6.c
Examining data/garlic-1.6/weight_colors.c
Examining data/garlic-1.6/select_5p7.c
Examining data/garlic-1.6/select_6p7.c
Examining data/garlic-1.6/extract_double.c
Examining data/garlic-1.6/parse_options.c
Examining data/garlic-1.6/button_press.c
Examining data/garlic-1.6/truncate_comm.c
Examining data/garlic-1.6/init_hyphob.c
Examining data/garlic-1.6/ex2doubles.c
Examining data/garlic-1.6/identify_button.c
Examining data/garlic-1.6/fading.c
Examining data/garlic-1.6/copy_doubles.c
Examining data/garlic-1.6/are_atoms_bound.c
Examining data/garlic-1.6/align_normal.c
Examining data/garlic-1.6/execute_script.c
Examining data/garlic-1.6/load_sec_structure.c
Examining data/garlic-1.6/pseudo_bonds.c
Examining data/garlic-1.6/add_two_colors.c
Examining data/garlic-1.6/reset_pos_flag.c
Examining data/garlic-1.6/extract_ca.c
Examining data/garlic-1.6/extract_cg.c
Examining data/garlic-1.6/cpk.c
Examining data/garlic-1.6/command_dump.c
Examining data/garlic-1.6/ex2ints.c
Examining data/garlic-1.6/log.c
Examining data/garlic-1.6/alloc_sec_structure.c
Examining data/garlic-1.6/draw_plots.c
Examining data/garlic-1.6/init_slab.c
Examining data/garlic-1.6/disp_color_cap.c
Examining data/garlic-1.6/set.c
Examining data/garlic-1.6/tag.c
Examining data/garlic-1.6/ssb.c
Examining data/garlic-1.6/comm_translate.c
Examining data/garlic-1.6/print_usage.c
Examining data/garlic-1.6/membrane.c
Examining data/garlic-1.6/read_template_file.c
Examining data/garlic-1.6/strong_bonds.c
Examining data/garlic-1.6/errmsg.c
Examining data/garlic-1.6/bond_style5_quad1.c
Examining data/garlic-1.6/bond_style5_quad2.c
Examining data/garlic-1.6/bond_style5_quad3.c
Examining data/garlic-1.6/bond_style5_quad4.c
Examining data/garlic-1.6/bonds_style1.c
Examining data/garlic-1.6/bonds_style2.c
Examining data/garlic-1.6/bonds_style3.c
Examining data/garlic-1.6/bonds_style4.c
Examining data/garlic-1.6/bonds_style5.c
Examining data/garlic-1.6/ramachandran.c
Examining data/garlic-1.6/color_size.c
Examining data/garlic-1.6/compare.c
Examining data/garlic-1.6/scale.c
Examining data/garlic-1.6/chi3_from_cbcgsdce.c
Examining data/garlic-1.6/edit_omega.c
Examining data/garlic-1.6/pdb_atom.c
Examining data/garlic-1.6/weighted_hydrophobicity.c
Examining data/garlic-1.6/rgbs_from_xcolor.c
Examining data/garlic-1.6/sp2_color.c
Examining data/garlic-1.6/write_line.c
Examining data/garlic-1.6/headerline.c
Examining data/garlic-1.6/set_phi.c
Examining data/garlic-1.6/psi_from_ncacn.c
Examining data/garlic-1.6/psi_from_ncaco.c
Examining data/garlic-1.6/set_psi.c
Examining data/garlic-1.6/neighborhood.c
Examining data/garlic-1.6/replace.c
Examining data/garlic-1.6/read_fasta.c
Examining data/garlic-1.6/save_seq_w_numbers.c
Examining data/garlic-1.6/load_font.c
Examining data/garlic-1.6/full_colors.c
Examining data/garlic-1.6/event_loop.c
Examining data/garlic-1.6/half_sphere_slab.c
Examining data/garlic-1.6/print_cursor_names.c
Examining data/garlic-1.6/extract_serials.c
Examining data/garlic-1.6/zebra.c
Examining data/garlic-1.6/chi2_from_cacbcg1cd.c
Examining data/garlic-1.6/main_resize.c
Examining data/garlic-1.6/translation_shift.c
Examining data/garlic-1.6/init_fading.c
Examining data/garlic-1.6/change_fading.c
Examining data/garlic-1.6/wheel_top_view.c
Examining data/garlic-1.6/beta_membrane.c
Examining data/garlic-1.6/motion_notify.c
Examining data/garlic-1.6/extract_vector.c
Examining data/garlic-1.6/generate_phi_psi.c
Examining data/garlic-1.6/phi_from_cncac.c
Examining data/garlic-1.6/select_triplet.c
Examining data/garlic-1.6/move_back_slab.c
Examining data/garlic-1.6/tag_position.c
Examining data/garlic-1.6/half_cylin_slab.c
Examining data/garlic-1.6/select_complement.c
Examining data/garlic-1.6/ex_rot_steps.c
Examining data/garlic-1.6/scalar_product.c
Examining data/garlic-1.6/docking_window.c
Examining data/garlic-1.6/chains.c
Examining data/garlic-1.6/extract_phrase.c
Examining data/garlic-1.6/backbone.c
Examining data/garlic-1.6/key_press.c
Examining data/garlic-1.6/draw_labels.c
Examining data/garlic-1.6/is_aromatic.c
Examining data/garlic-1.6/chi2_from_cacbcgcd1.c
Examining data/garlic-1.6/background.c
Examining data/garlic-1.6/draw_system.c
Examining data/garlic-1.6/make_pixmap2.c
Examining data/garlic-1.6/chi2_from_cacbcgnd1.c
Examining data/garlic-1.6/chi2_from_cacbcgod1.c
Examining data/garlic-1.6/extract_four_atoms.c
Examining data/garlic-1.6/exclude.c
Examining data/garlic-1.6/parse_color.c
Examining data/garlic-1.6/ex_fading_steps.c
Examining data/garlic-1.6/init_runtime.c
Examining data/garlic-1.6/half_nice_bond.c
Examining data/garlic-1.6/select_element.c
Examining data/garlic-1.6/atoms_style1.c
Examining data/garlic-1.6/atoms_style2.c
Examining data/garlic-1.6/atoms_style3.c
Examining data/garlic-1.6/atoms_style4.c
Examining data/garlic-1.6/atoms_style5.c
Examining data/garlic-1.6/atoms_style6.c
Examining data/garlic-1.6/atoms_style7.c
Examining data/garlic-1.6/half_sphere_fading.c
Examining data/garlic-1.6/count_template_res.c
Examining data/garlic-1.6/color_model.c
Examining data/garlic-1.6/slab_shift.c
Examining data/garlic-1.6/show_no_refresh.c
Examining data/garlic-1.6/alpha_membrane.c
Examining data/garlic-1.6/align_complexes.c
Examining data/garlic-1.6/radius.c
Examining data/garlic-1.6/create_structure.c
Examining data/garlic-1.6/structure.c
Examining data/garlic-1.6/select_model.c
Examining data/garlic-1.6/read_pdb.c
Examining data/garlic-1.6/select_tm.c
Examining data/garlic-1.6/set_chi1.c
Examining data/garlic-1.6/set_chi2.c
Examining data/garlic-1.6/set_chi3.c
Examining data/garlic-1.6/set_chi4.c
Examining data/garlic-1.6/set_chi5.c
Examining data/garlic-1.6/draw_planes.c
Examining data/garlic-1.6/rotate_membrane.c
Examining data/garlic-1.6/save_sequence.c
Examining data/garlic-1.6/init_nearest.c
Examining data/garlic-1.6/chi2_from_cacbcgcd.c
Examining data/garlic-1.6/chi2_from_cacbcgsd.c
Examining data/garlic-1.6/select_pattern.c
Examining data/garlic-1.6/select_events.c
Examining data/garlic-1.6/position.c
Examining data/garlic-1.6/pattern.c
Examining data/garlic-1.6/pixel_from_rgbs.c
Examining data/garlic-1.6/project_atoms.c
Examining data/garlic-1.6/full_select.c
Examining data/garlic-1.6/calc_params.c
Examining data/garlic-1.6/big2.c
Examining data/garlic-1.6/alloc_nearest.c
Examining data/garlic-1.6/draw_sticks.c
Examining data/garlic-1.6/project_planes.c
Examining data/garlic-1.6/prepare_oc.c
Examining data/garlic-1.6/blur.c
Examining data/garlic-1.6/translate_membrane.c
Examining data/garlic-1.6/refresh_backbone.c
Examining data/garlic-1.6/extract_cac.c
Examining data/garlic-1.6/title.c
Examining data/garlic-1.6/extract_int.c
Examining data/garlic-1.6/no_slab.c
Examining data/garlic-1.6/extract_nca.c
Examining data/garlic-1.6/is_old.c
Examining data/garlic-1.6/is_pdb.c
Examining data/garlic-1.6/save_sec_structure.c
Examining data/garlic-1.6/move_front_slab.c
Examining data/garlic-1.6/dock.c
Examining data/garlic-1.6/edit.c
Examining data/garlic-1.6/draw_balls2.c
Examining data/garlic-1.6/extract_field.c
Examining data/garlic-1.6/select_above.c
Examining data/garlic-1.6/command_refresh.c
Examining data/garlic-1.6/bond_style2_quad1.c
Examining data/garlic-1.6/bond_style2_quad2.c
Examining data/garlic-1.6/bond_style2_quad3.c
Examining data/garlic-1.6/bond_style2_quad4.c
Examining data/garlic-1.6/realloc_pdb.c
Examining data/garlic-1.6/edit_bond.c
Examining data/garlic-1.6/fileformat.c
Examining data/garlic-1.6/edit_chi1.c
Examining data/garlic-1.6/edit_chi2.c
Examining data/garlic-1.6/foreground.c
Examining data/garlic-1.6/font.c
Examining data/garlic-1.6/comm_rotate.c
Examining data/garlic-1.6/color_weighted.c
Examining data/garlic-1.6/color_schemes.c
Examining data/garlic-1.6/color_hyphob.c
Examining data/garlic-1.6/create_log_file.c
Examining data/garlic-1.6/hybonds.c
Examining data/garlic-1.6/print_version.c
Examining data/garlic-1.6/hide.c
Examining data/garlic-1.6/flip_vector.c
Examining data/garlic-1.6/prepare_color.c
Examining data/garlic-1.6/include.c
Examining data/garlic-1.6/free_memory.c
Examining data/garlic-1.6/print_config.c
Examining data/garlic-1.6/spacefill2.c
Examining data/garlic-1.6/sec_structure_from.c
Examining data/garlic-1.6/atom_names.c
Examining data/garlic-1.6/cylin_slab.c
Examining data/garlic-1.6/parse_sequence.c
Examining data/garlic-1.6/draw_edit_symbol.c
Examining data/garlic-1.6/cylin_fading.c
Examining data/garlic-1.6/extract_ncaco.c
Examining data/garlic-1.6/change_slab.c
Examining data/garlic-1.6/size_hints.c
Examining data/garlic-1.6/hide_control.c
Examining data/garlic-1.6/resize_complex.c
Examining data/garlic-1.6/pdb_id.c
Examining data/garlic-1.6/load.c
Examining data/garlic-1.6/chi5_from_cdnecznh1.c
Examining data/garlic-1.6/draw_titles.c
Examining data/garlic-1.6/planar_slab.c
Examining data/garlic-1.6/mono.c
Examining data/garlic-1.6/typedefs.h
Examining data/garlic-1.6/omega_from_cacnca.c
Examining data/garlic-1.6/draw_seahorse.c
Examining data/garlic-1.6/execute_command1.c
Examining data/garlic-1.6/execute_command2.c
Examining data/garlic-1.6/add_bond.c
Examining data/garlic-1.6/add_char.c
Examining data/garlic-1.6/move_back_fading.c
Examining data/garlic-1.6/extract_token.c
Examining data/garlic-1.6/residue_ranges.c
Examining data/garlic-1.6/color_shifts.c
Examining data/garlic-1.6/edit_phi.c
Examining data/garlic-1.6/rotate.c
Examining data/garlic-1.6/edit_psi.c
Examining data/garlic-1.6/spacefill_color.c
Examining data/garlic-1.6/init_colors.c
Examining data/garlic-1.6/parse_sec_structure.c
Examining data/garlic-1.6/text_background.c
Examining data/garlic-1.6/covalent.c
Examining data/garlic-1.6/free_runtime.c
Examining data/garlic-1.6/bond_style4_quad1.c
Examining data/garlic-1.6/bond_style4_quad2.c
Examining data/garlic-1.6/bond_style4_quad3.c
Examining data/garlic-1.6/bond_style4_quad4.c
Examining data/garlic-1.6/rotate_plane.c
Examining data/garlic-1.6/draw_bottom.c
Examining data/garlic-1.6/display_init.c
Examining data/garlic-1.6/plot.c
Examining data/garlic-1.6/compare_sequences.c
Examining data/garlic-1.6/window.c
Examining data/garlic-1.6/select.c
Examining data/garlic-1.6/draw_squid.c
Examining data/garlic-1.6/exclude_distant.c
Examining data/garlic-1.6/save.c
Examining data/garlic-1.6/geomcenter.c
Examining data/garlic-1.6/load_sequence.c
Examining data/garlic-1.6/labels.c
Examining data/garlic-1.6/select_below.c
Examining data/garlic-1.6/wmhints.c
Examining data/garlic-1.6/show.c
Examining data/garlic-1.6/slab.c
Examining data/garlic-1.6/group.c
Examining data/garlic-1.6/half_cylin_fading.c
Examining data/garlic-1.6/build_chain.c
Examining data/garlic-1.6/draw_membranes.c
Examining data/garlic-1.6/draw_ramachandran.c
Examining data/garlic-1.6/copy_sequence.c
Examining data/garlic-1.6/translate_plane.c
Examining data/garlic-1.6/alloc_gui.c
Examining data/garlic-1.6/comm_backbone.c
Examining data/garlic-1.6/venn.c
Examining data/garlic-1.6/defines.h
Examining data/garlic-1.6/input_refresh.c
Examining data/garlic-1.6/chi4_from_cgcdcenz.c
Examining data/garlic-1.6/balls.c
Examining data/garlic-1.6/hydrophobicity.c
Examining data/garlic-1.6/select_atoms.c
Examining data/garlic-1.6/half_stick.c
Examining data/garlic-1.6/covalent2.c
Examining data/garlic-1.6/create_windows.c
Examining data/garlic-1.6/open_config_file.c
Examining data/garlic-1.6/small_atoms2.c
Examining data/garlic-1.6/angle.c
Examining data/garlic-1.6/sequence_from.c
Examining data/garlic-1.6/blur_main_window.c
Examining data/garlic-1.6/load_complex.c
Examining data/garlic-1.6/representative_atoms.c
Examining data/garlic-1.6/small_ramachandran.c
Examining data/garlic-1.6/commands.h
Examining data/garlic-1.6/select_cis_trans.c
Examining data/garlic-1.6/big_spheres.c
Examining data/garlic-1.6/prepare_cursor.c
Examining data/garlic-1.6/stereo.c
Examining data/garlic-1.6/select_sequence.c
Examining data/garlic-1.6/quick_select.c
Examining data/garlic-1.6/donor_dipole.c
Examining data/garlic-1.6/eat_left_char.c
Examining data/garlic-1.6/apply_structure.c
Examining data/garlic-1.6/control_refresh.c
Examining data/garlic-1.6/rama_frame.c
Examining data/garlic-1.6/disulfide_bonds.c
Examining data/garlic-1.6/skip_keyword.c
Examining data/garlic-1.6/rama_mouse.c
Examining data/garlic-1.6/read_config.c
Examining data/garlic-1.6/is_polar.c
Examining data/garlic-1.6/draw_tags.c
Examining data/garlic-1.6/apply_selection.c
Examining data/garlic-1.6/rotate_range.c
Examining data/garlic-1.6/copypur.c
Examining data/garlic-1.6/translate.c
Examining data/garlic-1.6/generate_plane.c
Examining data/garlic-1.6/assign_hyphob.c
Examining data/garlic-1.6/refresh_pixmap.c
Examining data/garlic-1.6/docking_resize.c
Examining data/garlic-1.6/text_foreground.c
Examining data/garlic-1.6/sticks.c
Examining data/garlic-1.6/create.c
Examining data/garlic-1.6/alpha_membrane_center.c
Examining data/garlic-1.6/ex_trans_steps.c
Examining data/garlic-1.6/is_standard.c
Examining data/garlic-1.6/replace_command.c
Examining data/garlic-1.6/draw_venn.c
Examining data/garlic-1.6/alloc_mol_complex.c
Examining data/garlic-1.6/pick_bond.c
Examining data/garlic-1.6/atoms.c
Examining data/garlic-1.6/inform_user.c
Examining data/garlic-1.6/extract_hncac.c
Examining data/garlic-1.6/vector_product.c
Examining data/garlic-1.6/open_template_file.c
Examining data/garlic-1.6/parse_pattern.c
Examining data/garlic-1.6/sequence.c
Examining data/garlic-1.6/assign_radii.c
Examining data/garlic-1.6/required_atoms.c
Examining data/garlic-1.6/docking_project.c
Examining data/garlic-1.6/bond_partners.c
Examining data/garlic-1.6/translate_range.c
Examining data/garlic-1.6/write_hints.c
Examining data/garlic-1.6/hide_no_refresh.c
Examining data/garlic-1.6/wheel.c
Examining data/garlic-1.6/chi4_from_cgcdnecz.c
Examining data/garlic-1.6/acceptor_dipole.c
Examining data/garlic-1.6/alpha_normal.c
Examining data/garlic-1.6/comparison_mouse.c
Examining data/garlic-1.6/catch.c
Examining data/garlic-1.6/spacefill.c
Examining data/garlic-1.6/rotate_atom.c
Examining data/garlic-1.6/ex_template_residues.c
Examining data/garlic-1.6/control_click.c
Examining data/garlic-1.6/translate_complex.c
Examining data/garlic-1.6/select_2cz3.c
Examining data/garlic-1.6/draw_comparison.c
Examining data/garlic-1.6/plane.c
Examining data/garlic-1.6/stereo_data.c
Examining data/garlic-1.6/copy_template_atoms.c
Examining data/garlic-1.6/comm_move.c
Examining data/garlic-1.6/chi1_from_ncacbcg1.c
Examining data/garlic-1.6/hide_backbone.c
Examining data/garlic-1.6/select_2nz3.c
Examining data/garlic-1.6/select_3cz4.c
Examining data/garlic-1.6/select_3cz5.c
Examining data/garlic-1.6/select_3cz6.c
Examining data/garlic-1.6/garlic.c
Examining data/garlic-1.6/discard.c
Examining data/garlic-1.6/show_backbone.c
Examining data/garlic-1.6/extract_args.c
Examining data/garlic-1.6/bonds.c
Examining data/garlic-1.6/chi1_from_ncacbcg.c
Examining data/garlic-1.6/chi1_from_ncacbog.c
Examining data/garlic-1.6/chi1_from_ncacbsg.c
Examining data/garlic-1.6/small_omega.c
Examining data/garlic-1.6/extract_cacb.c
Examining data/garlic-1.6/chi1_from_ncacbog1.c
Examining data/garlic-1.6/select_3nz4.c
Examining data/garlic-1.6/select_4cz5.c
Examining data/garlic-1.6/select_3nz5.c
Examining data/garlic-1.6/select_4cz6.c
Examining data/garlic-1.6/select_3nz6.c
Examining data/garlic-1.6/select_4cz7.c
Examining data/garlic-1.6/select_4cz9.c
Examining data/garlic-1.6/select_hetero.c
Examining data/garlic-1.6/extract_cbxg.c
Examining data/garlic-1.6/ex_slab_steps.c
Examining data/garlic-1.6/extract_cdxe.c
Examining data/garlic-1.6/extract_cgxd.c
Examining data/garlic-1.6/bond_style1_quad1.c
Examining data/garlic-1.6/bond_style1_quad2.c
Examining data/garlic-1.6/bond_style1_quad3.c
Examining data/garlic-1.6/bond_style1_quad4.c
Examining data/garlic-1.6/select_4nz5.c
Examining data/garlic-1.6/select_5cz6.c
Examining data/garlic-1.6/select_4nz6.c
Examining data/garlic-1.6/select_5cz7.c
Examining data/garlic-1.6/select_4nz7.c
Examining data/garlic-1.6/select_5cz9.c
Examining data/garlic-1.6/select_4nz9.c
Examining data/garlic-1.6/extract_sequence.c
Examining data/garlic-1.6/dihedral_angles.c
Examining data/garlic-1.6/print_help.c
Examining data/garlic-1.6/docking_refresh.c
Examining data/garlic-1.6/parallel_part.c
Examining data/garlic-1.6/residue_names.c
Examining data/garlic-1.6/chi3_from_cbcgcdoe1.c
Examining data/garlic-1.6/select_alternate.c
Examining data/garlic-1.6/eat_right_char.c
Examining data/garlic-1.6/main_refresh.c
Examining data/garlic-1.6/select_5nz6.c
Examining data/garlic-1.6/select_5nz7.c
Examining data/garlic-1.6/select_5nz9.c
Examining data/garlic-1.6/project_membranes.c
Examining data/garlic-1.6/reset_phi.c
Examining data/garlic-1.6/reset_psi.c
Examining data/garlic-1.6/chain.c
Examining data/garlic-1.6/make_pixmap.c
Examining data/garlic-1.6/openfile_r.c
Examining data/garlic-1.6/no_fading.c
Examining data/garlic-1.6/planar_fading.c
Examining data/garlic-1.6/nice_bonds.c
Examining data/garlic-1.6/draw_balls.c
Examining data/garlic-1.6/register.c
Examining data/garlic-1.6/comm_slab.c
Examining data/garlic-1.6/list_exposed_polar.c
Examining data/garlic-1.6/extract_index.c
Examining data/garlic-1.6/mix_colors.c
Examining data/garlic-1.6/small_atoms.c
Examining data/garlic-1.6/copy_sec_structure.c
Examining data/garlic-1.6/probe.c
Examining data/garlic-1.6/init_header.c
Examining data/garlic-1.6/prepare_backbone.c
Examining data/garlic-1.6/alloc_config.c
Examining data/garlic-1.6/chi3_from_cbcgcdce.c
Examining data/garlic-1.6/chi3_from_cbcgcdne.c
Examining data/garlic-1.6/set_omega.c
Examining data/garlic-1.6/sphere_fading.c
Examining data/garlic-1.6/absolute_value.c
Examining data/garlic-1.6/phi_from_hncac.c
Examining data/garlic-1.6/check_dist.c
FINAL RESULTS:
data/garlic-1.6/add_char.c:78:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (runtimeSP->curr_commandA, stringA);
data/garlic-1.6/add_char.c:89:1: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (currP, runtimeSP->curr_commandA);
data/garlic-1.6/atoms.c:100:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/bonds.c:108:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/button_press.c:145:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "%s %d %s",
data/garlic-1.6/button_press.c:188:1: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (stringA, formatA, distance, label1A, label0A);
data/garlic-1.6/button_press.c:235:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (stringA, formatA,
data/garlic-1.6/check_dist.c:81:1: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (atomic_pairA, atom1SP->raw_atomS.chemical_symbolA);
data/garlic-1.6/color.c:105:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/comm_backbone.c:105:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/comparison_mouse.c:216:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "%d%s", serialI, nameA);
data/garlic-1.6/comparison_mouse.c:236:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "%s%d", nameA, serialI);
data/garlic-1.6/create.c:178:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA, "Residue not recognized: %s",
data/garlic-1.6/draw_labels.c:108:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "%s %d %s%c",
data/garlic-1.6/draw_labels.c:116:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "%s %d%c %s%c",
data/garlic-1.6/eat_left_char.c:70:1: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (runtimeSP->curr_commandA, stringA);
data/garlic-1.6/eat_left_char.c:78:1: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (currP, runtimeSP->curr_commandA);
data/garlic-1.6/eat_right_char.c:67:1: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (runtimeSP->curr_commandA, stringA);
data/garlic-1.6/eat_right_char.c:74:1: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (currP, runtimeSP->curr_commandA);
data/garlic-1.6/execute_script.c:100:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/execute_script.c:160:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (currP, runtimeSP->curr_commandA);
data/garlic-1.6/font.c:87:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA, "Font %s is not available!", tokenA);
data/garlic-1.6/hybonds.c:93:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/labels.c:80:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/list_exposed_polar.c:122:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (pure_residue_nameA, curr_atomSP->raw_atomS.pure_residue_nameA);
data/garlic-1.6/list_exposed_polar.c:166:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (curr_exposedSP->pure_residue_nameA, pure_residue_nameA);
data/garlic-1.6/load.c:122:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA, "Unable to open file %s!", tokenA);
data/garlic-1.6/load_sequence.c:138:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/log.c:130:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA, "Unable to open log file %s!", tokenA);
data/garlic-1.6/motion_notify.c:192:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "(%d) %s",
data/garlic-1.6/motion_notify.c:201:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "%s %d %c",
data/garlic-1.6/motion_notify.c:212:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "%s%c %d %s",
data/garlic-1.6/motion_notify.c:430:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (stringA, residue_nameA);
data/garlic-1.6/motion_notify.c:453:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (stringA, serial_and_chainA);
data/garlic-1.6/neighborhood.c:114:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/parse_pattern.c:118:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/parse_pattern.c:128:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (P, subtokenA);
data/garlic-1.6/parse_sequence.c:78:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/parse_sequence.c:87:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (P, tokenA);
data/garlic-1.6/pdb_id.c:71:1: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (mol_complexSP->unique_PDB_codeA, codeA);
data/garlic-1.6/plot_mouse.c:128:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "%s %d", residue_nameA, residue_sequenceI);
data/garlic-1.6/plot_mouse.c:174:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (stringA, residue_nameA);
data/garlic-1.6/quick_select.c:116:14: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (rangesF) sprintf (full_stringA, "*/%s/*/*", stringP);
data/garlic-1.6/quick_select.c:120:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else sprintf (full_stringA, "*/*/%s/*", stringP);
data/garlic-1.6/rama_mouse.c:110:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "(%d) %s",
data/garlic-1.6/rama_mouse.c:119:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (stringA, "%s %d %c",
data/garlic-1.6/ramachandran.c:113:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/register.c:68:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (command_stringA, outfile_nameA);
data/garlic-1.6/register.c:69:6: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
n = system (command_stringA);
data/garlic-1.6/register.c:74:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (command_stringA, outfile_nameA);
data/garlic-1.6/register.c:75:6: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
n = system (command_stringA);
data/garlic-1.6/register.c:80:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (command_stringA, outfile_nameA);
data/garlic-1.6/register.c:81:6: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
n = system (command_stringA);
data/garlic-1.6/replace.c:264:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/replace.c:316:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA, "Residue not recognized: %s",
data/garlic-1.6/replace.c:367:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/ssb.c:88:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/stereo.c:78:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/title.c:204:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (runtimeSP->messageA,
data/garlic-1.6/wheel_bottom_view.c:280:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (labelA, "%d:%s", serialI, residue_nameA);
data/garlic-1.6/wheel_top_view.c:280:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (labelA, "%d:%s", serialI, residue_nameA);
data/garlic-1.6/apply_structure.c:79:1: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand (random_seed);
data/garlic-1.6/create_log_file.c:53:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((env_valueP = getenv ("HOME")) != NULL)
data/garlic-1.6/log.c:108:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((env_valueP = getenv ("HOME")) != NULL)
data/garlic-1.6/open_config_file.c:58:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((home_dirP = getenv ("HOME")) != NULL) break;
data/garlic-1.6/open_config_file.c:59:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((home_dirP = getenv ("home")) != NULL) break;
data/garlic-1.6/open_template_file.c:60:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((home_dirP = getenv ("HOME")) != NULL) break;
data/garlic-1.6/open_template_file.c:61:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((home_dirP = getenv ("home")) != NULL) break;
data/garlic-1.6/openfile_r.c:59:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((env_valueP = getenv ("HOME")) == NULL) return NULL;
data/garlic-1.6/openfile_r.c:89:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((env_valueP = getenv ("HOME")) == NULL) return NULL;
data/garlic-1.6/openfile_r.c:114:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((env_valueP = getenv ("HOME")) == NULL) return NULL;
data/garlic-1.6/openfile_r.c:162:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((env_valueP = getenv ("MOL_DIR")) != NULL)
data/garlic-1.6/openfile_r.c:182:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((env_valueP = getenv ("MOL_PATH")) != NULL)
data/garlic-1.6/add_char.c:49:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[COMMSTRINGSIZE];
data/garlic-1.6/alpha_membrane.c:125:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/atoms.c:62:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/atoms.c:73:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/background.c:60:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/background.c:71:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Main window background color missing!");
data/garlic-1.6/balls.c:73:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/balls.c:82:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Positive value expected!");
data/garlic-1.6/blur.c:66:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/blur.c:103:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/blur.c:113:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/bonds.c:75:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/bonds.c:89:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/button_press.c:76:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[STRINGSIZE];
data/garlic-1.6/button_press.c:77:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char label0A[SHORTSTRINGSIZE];
data/garlic-1.6/button_press.c:78:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char label1A[SHORTSTRINGSIZE];
data/garlic-1.6/button_press.c:79:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char label2A[SHORTSTRINGSIZE];
data/garlic-1.6/button_press.c:80:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char label3A[SHORTSTRINGSIZE];
data/garlic-1.6/button_press.c:83:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char formatA[100];
data/garlic-1.6/button_press.c:187:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (formatA, "dist. = %.2f A [%s]-->[%s]");
data/garlic-1.6/button_press.c:233:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (formatA,
data/garlic-1.6/button_press.c:254:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "The same atom picked twice!");
data/garlic-1.6/catch.c:68:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/catch.c:78:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Complex identifier missing!");
data/garlic-1.6/catch.c:86:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad macromolecular complex identifier!");
data/garlic-1.6/catch.c:118:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad complex identifier (out of range)!");
data/garlic-1.6/center.c:78:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/center.c:97:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/center.c:124:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA, "There are no selected atoms!");
data/garlic-1.6/chain.c:101:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/chain.c:106:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/chain.c:111:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/check_dist.c:61:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char atomic_pairA[40];
data/garlic-1.6/check_dist.c:62:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char known_pairAA[KNOWNPAIRS][PAIRSIZE] =
data/garlic-1.6/color.c:69:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/color.c:90:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Color scheme specification missing!");
data/garlic-1.6/color_model.c:102:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/color_model.c:107:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/color_model.c:112:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/color_schemes.c:81:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char scheme_nameAA[COLORSCHEMES][SHORTSTRINGSIZE] =
data/garlic-1.6/color_schemes.c:156:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->out_left_near_rgbS,
data/garlic-1.6/color_schemes.c:159:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->out_middle_near_rgbS,
data/garlic-1.6/color_schemes.c:162:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->out_right_near_rgbS,
data/garlic-1.6/color_schemes.c:165:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->out_left_far_rgbS,
data/garlic-1.6/color_schemes.c:168:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->out_middle_far_rgbS,
data/garlic-1.6/color_schemes.c:171:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->out_right_far_rgbS,
data/garlic-1.6/color_schemes.c:218:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->in_left_near_rgbS,
data/garlic-1.6/color_schemes.c:221:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->in_middle_near_rgbS,
data/garlic-1.6/color_schemes.c:224:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->in_right_near_rgbS,
data/garlic-1.6/color_schemes.c:227:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->in_left_far_rgbS,
data/garlic-1.6/color_schemes.c:230:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->in_middle_far_rgbS,
data/garlic-1.6/color_schemes.c:233:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&configSP->in_right_far_rgbS,
data/garlic-1.6/color_schemes.c:342:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/color_schemes.c:347:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/color_schemes.c:352:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/color_size.c:62:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char amino_acidAA[23][4] =
data/garlic-1.6/comm_backbone.c:78:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/comm_fading.c:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/comm_fading.c:73:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Fading specification incomplete!");
data/garlic-1.6/comm_fading.c:163:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/comm_fading.c:173:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Fading shift missing!");
data/garlic-1.6/comm_fading.c:181:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/comm_move.c:69:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to recognize keyword(s)!");
data/garlic-1.6/comm_rotate.c:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/comm_rotate.c:73:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Axis specification missing!");
data/garlic-1.6/comm_rotate.c:84:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/comm_rotate.c:94:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Rotation angle missing!");
data/garlic-1.6/comm_rotate.c:102:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Rotation angle specification is bad!");
data/garlic-1.6/comm_slab.c:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/comm_slab.c:73:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Slab specification incomplete!");
data/garlic-1.6/comm_slab.c:163:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/comm_slab.c:173:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Slab shift missing!");
data/garlic-1.6/comm_slab.c:181:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/comm_translate.c:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/comm_translate.c:73:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Axis specification missing!");
data/garlic-1.6/comm_translate.c:84:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/comm_translate.c:94:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Translation shift missing!");
data/garlic-1.6/comm_translate.c:102:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/command_dump.c:53:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/command_dump.c:54:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keywordA[SHORTSTRINGSIZE];
data/garlic-1.6/command_dump.c:56:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string_copyA[STRINGSIZE];
data/garlic-1.6/command_dump.c:68:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "At least one keyword is expected!");
data/garlic-1.6/command_dump.c:93:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Nasty error #1 in Dump_!");
data/garlic-1.6/command_dump.c:100:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Nasty error #2 in Dump_!");
data/garlic-1.6/command_dump.c:107:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Nasty error #3 in Dump_!");
data/garlic-1.6/command_dump.c:113:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(outfileP = fopen (tokenA, "w")))
data/garlic-1.6/command_dump.c:115:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open output file!");
data/garlic-1.6/compare.c:70:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/compare.c:100:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad zoom factor!");
data/garlic-1.6/compare.c:118:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/compare.c:127:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Both indices must be positive!");
data/garlic-1.6/compare.c:135:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/compare.c:155:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Syntax error!");
data/garlic-1.6/compare.c:163:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Positive integers expected!");
data/garlic-1.6/compare.c:169:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The minimal score should not");
data/garlic-1.6/compare.c:170:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA, " exceed the segment width!");
data/garlic-1.6/comparison_mouse.c:59:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[SHORTSTRINGSIZE];
data/garlic-1.6/comparison_mouse.c:67:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nameA[RESNAMESIZE];
data/garlic-1.6/comparison_mouse.c:147:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "HORIZ.");
data/garlic-1.6/comparison_mouse.c:152:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "VERT.");
data/garlic-1.6/copy_template_atoms.c:81:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP,
data/garlic-1.6/cpk.c:92:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:97:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:102:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:118:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:123:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:128:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:144:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:149:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:154:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:170:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:175:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:180:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:196:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:201:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:206:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:222:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:227:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/cpk.c:232:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/create.c:101:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bad_residue_nameA[10];
data/garlic-1.6/create.c:110:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The sequence buffer is empty!");
data/garlic-1.6/create.c:118:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/create.c:188:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Too many structures in use!\n");
data/garlic-1.6/create.c:198:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA,
data/garlic-1.6/create_log_file.c:41:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path_nameA[STRINGSIZE];
data/garlic-1.6/create_log_file.c:45:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (log_file_nameP, "w")) != NULL) return fileP;
data/garlic-1.6/create_log_file.c:69:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (path_nameA, "w")) != NULL) return fileP;
data/garlic-1.6/create_structure.c:147:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (new_mol_complexSP->unique_PDB_codeA, "XXXX");
data/garlic-1.6/create_windows.c:83:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char main_win_titleA[SHORTSTRINGSIZE];
data/garlic-1.6/create_windows.c:84:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char icon_win_titleA[SHORTSTRINGSIZE] = "garlic";
data/garlic-1.6/create_windows.c:87:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char prog_nameA[SHORTSTRINGSIZE] = "garlic";
data/garlic-1.6/create_windows.c:88:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char class_nameA[SHORTSTRINGSIZE] = "Garlic";
data/garlic-1.6/create_windows.c:97:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (main_win_titleA, "GARLIC 1.6 - Copyright (C) 2000-2006 Damir Zucic");
data/garlic-1.6/discard.c:86:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/discard.c:96:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Complex identifier missing!");
data/garlic-1.6/discard.c:222:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad macromolecular complex identifier!");
data/garlic-1.6/discard.c:285:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad complex identifier (out of range)!");
data/garlic-1.6/dock.c:72:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/dock.c:90:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The command string is incomplete!");
data/garlic-1.6/dock.c:137:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to extract two identifiers!");
data/garlic-1.6/dock.c:145:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The identifiers should not be equal!");
data/garlic-1.6/dock.c:177:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA,
data/garlic-1.6/dock.c:186:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA,
data/garlic-1.6/dock.c:195:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA,
data/garlic-1.6/docking_window.c:61:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char docking_win_titleA[SHORTSTRINGSIZE];
data/garlic-1.6/docking_window.c:63:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char docking_icon_titleA[SHORTSTRINGSIZE];
data/garlic-1.6/docking_window.c:116:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (docking_win_titleA, "Docking");
data/garlic-1.6/docking_window.c:159:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (docking_icon_titleA, "Docking");
data/garlic-1.6/donor_dipole.c:93:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hydrogen_nameA[10];
data/garlic-1.6/donor_dipole.c:121:37: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if (expected_bound_carbonsN == -1) strcpy (hydrogen_nameA, "HG");
data/garlic-1.6/donor_dipole.c:124:42: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
else if (expected_bound_carbonsN == -2) strcpy (hydrogen_nameA, "HG1");
data/garlic-1.6/donor_dipole.c:127:42: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
else if (expected_bound_carbonsN == -3) strcpy (hydrogen_nameA, "HH");
data/garlic-1.6/draw_comparison.c:68:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char nameAA[23][4] =
data/garlic-1.6/draw_labels.c:49:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char stringA[SHORTSTRINGSIZE];
data/garlic-1.6/draw_plots.c:124:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[SHORTSTRINGSIZE];
data/garlic-1.6/draw_plots.c:146:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The sequence buffer is empty!");
data/garlic-1.6/draw_plots.c:182:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The specified range is empty!");
data/garlic-1.6/draw_plots.c:846:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "%d", residue_serialI);
data/garlic-1.6/draw_seahorse.c:72:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[SHORTSTRINGSIZE];
data/garlic-1.6/draw_seahorse.c:242:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Use keys 7 and 9 on numeric keypad");
data/garlic-1.6/draw_seahorse.c:248:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Use 2, 4, 6 and 8 on numeric keypad");
data/garlic-1.6/draw_squid.c:68:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[SHORTSTRINGSIZE];
data/garlic-1.6/draw_squid.c:215:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Use 0, 5, /, *, + and - on numeric keypad");
data/garlic-1.6/draw_venn.c:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/draw_venn.c:83:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[SHORTSTRINGSIZE];
data/garlic-1.6/draw_venn.c:89:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The sequence buffer is empty!");
data/garlic-1.6/draw_venn.c:118:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The specified range is empty!");
data/garlic-1.6/draw_venn.c:481:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "TOTAL: %d", residuesN);
data/garlic-1.6/draw_venn.c:492:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "POLAR: %d", polarN);
data/garlic-1.6/draw_venn.c:503:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "HYDROPHOBIC: %d", hydrophobicN);
data/garlic-1.6/draw_venn.c:515:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "SMALL: %d", smallN);
data/garlic-1.6/draw_venn.c:527:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "CHARGED: %d", chargedN);
data/garlic-1.6/draw_venn.c:539:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "AROMATIC: %d", aromaticN);
data/garlic-1.6/draw_venn.c:551:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "ALIPHATIC: %d", aliphaticN);
data/garlic-1.6/draw_venn.c:564:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "TINY: %d", tinyN);
data/garlic-1.6/draw_venn.c:576:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "POSITIVE: %d", positiveN);
data/garlic-1.6/draw_venn.c:588:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "NEGATIVE: %d", negativeN);
data/garlic-1.6/draw_venn.c:600:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "GLN: %d", glnN);
data/garlic-1.6/draw_venn.c:612:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "ARG: %d", argN);
data/garlic-1.6/draw_venn.c:624:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "LYS: %d", lysN);
data/garlic-1.6/draw_venn.c:636:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "GLU: %d", gluN);
data/garlic-1.6/draw_venn.c:648:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "ASP: %d", aspN);
data/garlic-1.6/draw_venn.c:660:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "SER: %d", serN);
data/garlic-1.6/draw_venn.c:674:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "ASN: %d", asnN);
data/garlic-1.6/draw_venn.c:687:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "THR: %d", thrN);
data/garlic-1.6/draw_venn.c:704:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "HIS: %d", hisN);
data/garlic-1.6/draw_venn.c:716:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "CYS (S-S): %d", S_S_cysN);
data/garlic-1.6/draw_venn.c:728:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "CYS (S-H): %d", S_H_cysN);
data/garlic-1.6/draw_venn.c:740:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "PRO: %d", proN);
data/garlic-1.6/draw_venn.c:754:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "TYR: %d", tyrN);
data/garlic-1.6/draw_venn.c:767:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "TRP: %d", trpN);
data/garlic-1.6/draw_venn.c:784:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "MET: %d", metN);
data/garlic-1.6/draw_venn.c:796:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "PHE: %d", pheN);
data/garlic-1.6/draw_venn.c:808:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "VAL: %d", valN);
data/garlic-1.6/draw_venn.c:822:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "LEU: %d", leuN);
data/garlic-1.6/draw_venn.c:835:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "ILE: %d", ileN);
data/garlic-1.6/draw_venn.c:848:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "ALA: %d", alaN);
data/garlic-1.6/draw_venn.c:861:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "GLY: %d", glyN);
data/garlic-1.6/eat_left_char.c:40:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[COMMSTRINGSIZE];
data/garlic-1.6/eat_right_char.c:40:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[COMMSTRINGSIZE];
data/garlic-1.6/edit.c:93:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/edit.c:128:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:191:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:213:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:259:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:281:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:331:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:333:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA,
data/garlic-1.6/edit.c:385:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:421:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:473:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:495:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:521:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:523:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA,
data/garlic-1.6/edit.c:542:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Both indices must be positive!");
data/garlic-1.6/edit.c:564:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:587:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:711:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:732:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/edit.c:772:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Keyword not recognized!");
data/garlic-1.6/exclude.c:50:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string_copyA[STRINGSIZE];
data/garlic-1.6/exclude.c:52:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/execute_command1.c:255:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char commandA[STRINGSIZE];
data/garlic-1.6/execute_command1.c:259:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/execute_command1.c:315:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Press enter to continue!");
data/garlic-1.6/execute_command1.c:620:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/execute_command1.c:938:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Command not recognized!");
data/garlic-1.6/execute_command2.c:253:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char commandA[STRINGSIZE];
data/garlic-1.6/execute_command2.c:257:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/execute_command2.c:291:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Press enter to continue!");
data/garlic-1.6/execute_command2.c:596:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/execute_command2.c:902:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Command not recognized!");
data/garlic-1.6/execute_script.c:75:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/execute_script.c:77:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char commandA[COMMSTRINGSIZE];
data/garlic-1.6/execute_script.c:92:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Script file not specified!");
data/garlic-1.6/extract_index.c:33:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char copyA[SHORTSTRINGSIZE];
data/garlic-1.6/font.c:62:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/font.c:78:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Missing font name!");
data/garlic-1.6/foreground.c:60:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/foreground.c:71:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Main window foreground color missing!");
data/garlic-1.6/full_colors.c:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/full_colors.c:117:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (color_schemeS.left_rgbSA + surfaceI,
data/garlic-1.6/full_colors.c:130:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (color_schemeS.middle_rgbSA + surfaceI,
data/garlic-1.6/full_colors.c:143:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (color_schemeS.right_rgbSA + surfaceI,
data/garlic-1.6/full_colors.c:180:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/full_colors.c:188:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/full_colors.c:196:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/garlic.c:164:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char mol_file_nameA[STRINGSIZE]; /* Input file name */
data/garlic-1.6/group.c:88:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/group.c:91:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char chainIDA[30] = "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
data/garlic-1.6/group.c:120:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/group.c:134:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The group is not defined!");
data/garlic-1.6/group.c:153:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Missing the output file name!");
data/garlic-1.6/group.c:159:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (tokenA, "w")) == NULL)
data/garlic-1.6/group.c:161:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open output file!");
data/garlic-1.6/group.c:197:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (©_raw_atomS, raw_atomSP,
data/garlic-1.6/group.c:265:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The group is not defined!");
data/garlic-1.6/group.c:284:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Missing the output file name!");
data/garlic-1.6/group.c:290:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (tokenA, "w")) == NULL)
data/garlic-1.6/group.c:292:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open output file!");
data/garlic-1.6/group.c:324:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (©_raw_atomS, raw_atomSP,
data/garlic-1.6/group.c:420:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/group.c:422:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA, " identifier!");
data/garlic-1.6/group.c:441:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/group.c:495:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/group.c:535:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "There are no atoms in this group!");
data/garlic-1.6/hybonds.c:68:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/hydrophobicity.c:66:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char amino_acidAA[23][4] =
data/garlic-1.6/hyphob_function1.c:54:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/hyphob_function2.c:54:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/hyphob_function3.c:54:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/hyphob_function4.c:54:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/hyphob_function5.c:61:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/hyphob_function6.c:61:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/include.c:49:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string_copyA[STRINGSIZE];
data/garlic-1.6/include.c:51:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/init_colors.c:56:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 0)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:58:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 0)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:60:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 0)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:64:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 0)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:66:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 0)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:68:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 0)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:76:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 1)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:78:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 1)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:80:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 1)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:84:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 1)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:86:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 1)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:88:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 1)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:96:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 2)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:98:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 2)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:100:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 2)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:104:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 2)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:106:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 2)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:108:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 2)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:116:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 3)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:118:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 3)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:120:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 3)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:124:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 3)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:126:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 3)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:128:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 3)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:136:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 4)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:138:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 4)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:140:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 4)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:144:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 4)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:146:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 4)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:148:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 4)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:156:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 5)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:158:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 5)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:160:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 5)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:164:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 5)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:166:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 5)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:168:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 5)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:176:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 6)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:178:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 6)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:180:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 6)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:184:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 6)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:186:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 6)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:188:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 6)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:196:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 7)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:198:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 7)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:200:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 7)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:204:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 7)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:206:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 7)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:208:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 7)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:216:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 8)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:218:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 8)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:220:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 8)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:224:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 8)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:226:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 8)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:228:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 8)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:236:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 9)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:238:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 9)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:240:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 9)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:244:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 9)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:246:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 9)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:248:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 9)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:256:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 10)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:258:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 10)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:260:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 10)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:264:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 10)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:266:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 10)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:268:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 10)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:276:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 11)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:278:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 11)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:280:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 11)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:284:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 11)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:286:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 11)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:288:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 11)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:296:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 12)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:298:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 12)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:300:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 12)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:304:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 12)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:306:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 12)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:308:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 12)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:316:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 13)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:318:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 13)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:320:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 13)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:324:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 13)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:326:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 13)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:328:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 13)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:332:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 13)->left_rgbSA + 2, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:334:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 13)->middle_rgbSA + 2, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:336:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 13)->right_rgbSA + 2, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:344:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 14)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:346:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 14)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:348:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 14)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:352:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 14)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:354:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 14)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:356:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 14)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:360:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 14)->left_rgbSA + 2, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:362:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 14)->middle_rgbSA + 2, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:364:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 14)->right_rgbSA + 2, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:372:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 15)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:374:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 15)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:376:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 15)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:384:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 21)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:386:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 21)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:388:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 21)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:392:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 21)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:394:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 21)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:396:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 21)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:404:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 22)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:406:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 22)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:408:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 22)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:412:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 22)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:414:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 22)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:416:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 22)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:424:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 23)->left_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:426:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 23)->middle_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:428:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 23)->right_rgbSA, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:432:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 23)->left_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:434:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 23)->middle_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_colors.c:436:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((color_schemeSP + 23)->right_rgbSA + 1, &rgbS, rgb_struct_size);
data/garlic-1.6/init_hyphob.c:49:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/input_refresh.c:40:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char left_partA[COMMSTRINGSIZE];
data/garlic-1.6/input_refresh.c:41:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char right_partA[COMMSTRINGSIZE];
data/garlic-1.6/is_aromatic.c:30:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char aromatic_nameAA[4][4] = {"HIS", "PHE", "TRP", "TYR"};
data/garlic-1.6/is_old.c:34:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string_copyA[SHORTSTRINGSIZE];
data/garlic-1.6/is_pdb.c:49:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineA[STRINGSIZE];
data/garlic-1.6/is_pdb.c:54:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char PDBKeywordAA[PDB_KEYWORDS][7] =
data/garlic-1.6/is_polar.c:33:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char polar_nameAA[13][4] = {"GLU", "GLN", "HIS", "LYS", "TYR",
data/garlic-1.6/is_standard.c:34:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char residue_nameAA[20][4] = {"ALA", "ARG", "ASN", "ASP", "CYS",
data/garlic-1.6/key_press.c:95:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char stringA[STRINGSIZE];
data/garlic-1.6/key_release.c:40:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[STRINGSIZE];
data/garlic-1.6/labels.c:61:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/list_exposed_polar.c:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pure_residue_nameA[RESNAMESIZE];
data/garlic-1.6/load.c:78:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/load.c:79:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char messageA[SHORTSTRINGSIZE] = "Loading file ...";
data/garlic-1.6/load.c:93:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Missing input file name!");
data/garlic-1.6/load_sec_structure.c:55:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineA[STRINGSIZE];
data/garlic-1.6/load_sec_structure.c:57:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/load_sec_structure.c:86:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "File name missing!");
data/garlic-1.6/load_sec_structure.c:95:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open file!");
data/garlic-1.6/load_sec_structure.c:152:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/load_sec_structure.c:183:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA,
data/garlic-1.6/load_sec_structure.c:185:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA,
data/garlic-1.6/load_sequence.c:64:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineA[STRINGSIZE];
data/garlic-1.6/load_sequence.c:66:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/load_sequence.c:99:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "File name missing!");
data/garlic-1.6/load_sequence.c:113:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open file!");
data/garlic-1.6/load_sequence.c:163:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Sequence too long!");
data/garlic-1.6/log.c:52:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/log.c:53:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char token_copyA[STRINGSIZE];
data/garlic-1.6/log.c:57:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path_nameA[STRINGSIZE];
data/garlic-1.6/log.c:68:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Log file not specified!");
data/garlic-1.6/log.c:98:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
configSP->log_fileP = fopen (tokenA, "w");
data/garlic-1.6/log.c:124:25: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
configSP->log_fileP = fopen (path_nameA, "w");
data/garlic-1.6/make_pixmap.c:70:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line_copyA[STRINGSIZE];
data/garlic-1.6/make_pixmap2.c:73:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line_copyA[STRINGSIZE];
data/garlic-1.6/membrane.c:72:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/membrane.c:93:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/membrane.c:95:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA, " at least seven residues!");
data/garlic-1.6/membrane.c:141:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/membrane.c:197:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/membrane.c:206:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/membrane.c:243:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/membrane.c:252:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/membrane.c:292:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/membrane.c:301:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The value should be positive!");
data/garlic-1.6/membrane.c:331:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/membrane.c:333:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA, " at least five residues!");
data/garlic-1.6/membrane.c:379:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/membrane.c:405:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Keyword not recognized!");
data/garlic-1.6/motion_notify.c:78:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char stringA[STRINGSIZE];
data/garlic-1.6/motion_notify.c:90:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/motion_notify.c:91:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serial_and_chainA[SHORTSTRINGSIZE];
data/garlic-1.6/motion_notify.c:224:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (tf < 99.99) sprintf (stringA, "t.f.: %5.2f", tf);
data/garlic-1.6/motion_notify.c:225:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf (stringA, "t.f. :%.2f", tf);
data/garlic-1.6/motion_notify.c:232:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "phob:%6.2f", raw_atomSP->hydrophobicity);
data/garlic-1.6/motion_notify.c:239:29: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if (curr_atomSP->selectedF) strcpy (stringA, "selected");
data/garlic-1.6/motion_notify.c:240:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
else strcpy (stringA, "not selected");
data/garlic-1.6/motion_notify.c:249:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "phi: missing");
data/garlic-1.6/motion_notify.c:256:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "phi: %7.2f", phi);
data/garlic-1.6/motion_notify.c:267:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "psi: missing");
data/garlic-1.6/motion_notify.c:274:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "psi: %7.2f", psi);
data/garlic-1.6/motion_notify.c:285:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "ome: missing");
data/garlic-1.6/motion_notify.c:292:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "ome: %7.2f", omega);
data/garlic-1.6/motion_notify.c:303:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "chi1: -");
data/garlic-1.6/motion_notify.c:310:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "chi1:%7.2f", chi1);
data/garlic-1.6/motion_notify.c:321:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "chi2: -");
data/garlic-1.6/motion_notify.c:328:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "chi2:%7.2f", chi2);
data/garlic-1.6/motion_notify.c:339:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "chi3: -");
data/garlic-1.6/motion_notify.c:346:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "chi3:%7.2f", chi3);
data/garlic-1.6/motion_notify.c:355:19: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (x < 9999.999) sprintf (stringA, "x: %8.3f", x);
data/garlic-1.6/motion_notify.c:356:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf (stringA, "x: %.3f", x);
data/garlic-1.6/motion_notify.c:364:19: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (y < 9999.999) sprintf (stringA, "y: %8.3f", y);
data/garlic-1.6/motion_notify.c:365:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf (stringA, "y: %.3f", y);
data/garlic-1.6/motion_notify.c:373:19: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (z < 9999.999) sprintf (stringA, "z: %8.3f", z);
data/garlic-1.6/motion_notify.c:374:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf (stringA, "z: %.3f", z);
data/garlic-1.6/motion_notify.c:439:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (serial_and_chainA, "%d",
data/garlic-1.6/motion_notify.c:446:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (serial_and_chainA, "%d%c",
data/garlic-1.6/neighborhood.c:63:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/open_config_file.c:44:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char tildaA[10] = "~";
data/garlic-1.6/open_config_file.c:47:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char config_file_nameA[STRINGSIZE];
data/garlic-1.6/open_config_file.c:50:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (".garlicrc", "r")) != NULL)
data/garlic-1.6/open_config_file.c:68:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (config_file_nameA, "r")) != NULL)
data/garlic-1.6/open_config_file.c:79:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (config_file_nameA, "r")) != NULL)
data/garlic-1.6/open_config_file.c:86:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen ("/usr/share/garlic/.garlicrc", "r")) != NULL)
data/garlic-1.6/open_config_file.c:93:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen ("/etc/garlicrc", "r")) != NULL)
data/garlic-1.6/open_config_file.c:99:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen ("/usr/local/lib/garlic/.garlicrc", "r")) != NULL)
data/garlic-1.6/open_config_file.c:105:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen ("/usr/lib/garlic/.garlicrc", "r")) != NULL)
data/garlic-1.6/open_template_file.c:46:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char tildaA[10] = "~";
data/garlic-1.6/open_template_file.c:49:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char template_file_nameA[STRINGSIZE];
data/garlic-1.6/open_template_file.c:52:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen ("residues.pdb", "r")) != NULL)
data/garlic-1.6/open_template_file.c:70:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (template_file_nameA, "r")) != NULL)
data/garlic-1.6/open_template_file.c:81:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (template_file_nameA, "r")) != NULL)
data/garlic-1.6/open_template_file.c:88:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen ("/usr/share/garlic/residues.pdb", "r")) != NULL)
data/garlic-1.6/open_template_file.c:94:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen ("/usr/local/lib/garlic/residues.pdb", "r")) != NULL)
data/garlic-1.6/open_template_file.c:100:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen ("/usr/lib/garlic/residues.pdb", "r")) != NULL)
data/garlic-1.6/openfile_r.c:51:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char copyA[STRINGSIZE];
data/garlic-1.6/openfile_r.c:52:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path_nameA[STRINGSIZE];
data/garlic-1.6/openfile_r.c:75:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileP = fopen (path_nameA, "r");
data/garlic-1.6/openfile_r.c:105:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileP = fopen (path_nameA, "r");
data/garlic-1.6/openfile_r.c:146:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileP = fopen (path_nameA, "r");
data/garlic-1.6/openfile_r.c:156:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (file_nameP, "r")) != NULL) return fileP;
data/garlic-1.6/openfile_r.c:178:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (path_nameA, "r")) != NULL) return fileP;
data/garlic-1.6/openfile_r.c:209:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (path_nameA, "r")) != NULL) return fileP;
data/garlic-1.6/parse_options.c:138:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&guiSP->output_winS.bg_rgbS,
data/garlic-1.6/parse_options.c:147:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&guiSP->output_winS.fg_rgbS,
data/garlic-1.6/parse_pattern.c:56:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/parse_pattern.c:62:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subtokenA[SHORTSTRINGSIZE];
data/garlic-1.6/parse_pattern.c:136:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA,
data/garlic-1.6/parse_pattern.c:149:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA, "Too many residues!");
data/garlic-1.6/parse_pattern.c:165:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA, "Pattern is too long!");
data/garlic-1.6/parse_sec_structure.c:85:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA, "Bad code!");
data/garlic-1.6/parse_sec_structure.c:86:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA,
data/garlic-1.6/parse_sec_structure.c:88:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA,
data/garlic-1.6/parse_sequence.c:54:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/pattern.c:64:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string_copyA[STRINGSIZE];
data/garlic-1.6/pattern.c:69:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/pattern.c:99:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Command parameter(s) missing!");
data/garlic-1.6/pattern.c:118:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/pattern.c:127:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/pattern.c:144:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Keyword not recognized!");
data/garlic-1.6/pdb_atom.c:116:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char substringA[STRINGSIZE];
data/garlic-1.6/pdb_id.c:57:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char codeA[PDBCODESIZE] = "????";
data/garlic-1.6/pick_bond.c:104:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "This is not an ordinary covalent bond!");
data/garlic-1.6/pick_bond.c:133:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "This bond belongs to a ring!");
data/garlic-1.6/plane.c:64:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/plane.c:123:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/plane.c:132:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/plane.c:166:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/plane.c:175:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/plane.c:201:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Keyword not recognized!");
data/garlic-1.6/plot.c:124:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The sequence buffer is empty!");
data/garlic-1.6/plot.c:132:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/plot.c:298:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/plot.c:309:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/plot.c:311:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (runtimeSP->messageA,
data/garlic-1.6/plot.c:333:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad range (check indices)!");
data/garlic-1.6/plot_mouse.c:57:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/plot_mouse.c:60:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char stringA[STRINGSIZE];
data/garlic-1.6/plot_mouse.c:135:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "value:");
data/garlic-1.6/plot_mouse.c:139:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "%.3f", value);
data/garlic-1.6/position.c:66:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char copyA[STRINGSIZE];
data/garlic-1.6/position.c:82:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/prepare_cursor.c:45:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char cursor_shape_bits[32] = {0x80, 0x00, 0x80, 0x00,
data/garlic-1.6/prepare_cursor.c:55:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char cursor_mask_bits[32] = {0xc0, 0x01, 0xc0, 0x01,
data/garlic-1.6/prepare_cursor.c:70:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nameA[20];
data/garlic-1.6/print_cursor_names.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char nameAA[78][20] = {"X_cursor", "arrow",
data/garlic-1.6/probe.c:82:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/probe.c:91:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Positive value expected!");
data/garlic-1.6/quick_select.c:74:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char copyA[STRINGSIZE];
data/garlic-1.6/quick_select.c:78:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char full_stringA[STRINGSIZE];
data/garlic-1.6/radius.c:61:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to extract the sphere radius!");
data/garlic-1.6/radius.c:69:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Positive value expected!");
data/garlic-1.6/rama_frame.c:49:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[SHORTSTRINGSIZE];
data/garlic-1.6/rama_frame.c:226:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "abscisa: phi ordinate: psi");
data/garlic-1.6/rama_frame.c:239:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "trans");
data/garlic-1.6/rama_frame.c:246:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "cis");
data/garlic-1.6/rama_frame.c:253:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "bad / amino terminus");
data/garlic-1.6/rama_frame.c:269:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "-180");
data/garlic-1.6/rama_frame.c:284:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "-90");
data/garlic-1.6/rama_frame.c:299:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "90");
data/garlic-1.6/rama_frame.c:314:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "180");
data/garlic-1.6/rama_mouse.c:58:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char stringA[SHORTSTRINGSIZE];
data/garlic-1.6/rama_mouse.c:131:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "trans");
data/garlic-1.6/rama_mouse.c:137:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "cis");
data/garlic-1.6/rama_mouse.c:143:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "bad/undef.");
data/garlic-1.6/rama_mouse.c:153:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "phi: missing");
data/garlic-1.6/rama_mouse.c:160:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "phi: %7.2f", phi);
data/garlic-1.6/rama_mouse.c:171:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "psi: missing");
data/garlic-1.6/rama_mouse.c:178:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "psi: %7.2f", psi);
data/garlic-1.6/rama_mouse.c:189:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "omeg: missing");
data/garlic-1.6/rama_mouse.c:196:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stringA, "omeg:%7.2f", omega);
data/garlic-1.6/ramachandran.c:68:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/read_config.c:64:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[STRINGSIZE];
data/garlic-1.6/read_config.c:66:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char phraseA[SHORTSTRINGSIZE];
data/garlic-1.6/read_config.c:75:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->geometryA, "default");
data/garlic-1.6/read_config.c:78:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->font_nameA, "10x20");
data/garlic-1.6/read_config.c:79:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->cursor_nameA, "default");
data/garlic-1.6/read_config.c:101:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->bg_colorA, "black");
data/garlic-1.6/read_config.c:102:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->fg_colorA, "white");
data/garlic-1.6/read_config.c:103:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->text_bg_colorA, "black");
data/garlic-1.6/read_config.c:104:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->text_fg_colorA, "white");
data/garlic-1.6/read_config.c:116:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->left_colorAA[0], "RGB:FFFF/FFFF/0000");
data/garlic-1.6/read_config.c:117:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->middle_colorAA[0], "RGB:FFFF/AAAA/0000");
data/garlic-1.6/read_config.c:118:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->right_colorAA[0], "RGB:FFFF/5555/0000");
data/garlic-1.6/read_config.c:119:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->left_colorAA[1], "RGB:FFFF/8888/0000");
data/garlic-1.6/read_config.c:120:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->middle_colorAA[1], "RGB:FFFF/0000/0000");
data/garlic-1.6/read_config.c:121:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->right_colorAA[1], "RGB:AAAA/0000/0000");
data/garlic-1.6/read_config.c:122:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->left_colorAA[2], "RGB:7777/0000/0000");
data/garlic-1.6/read_config.c:123:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->middle_colorAA[2], "RGB:5555/0000/0000");
data/garlic-1.6/read_config.c:124:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->right_colorAA[2], "RGB:4444/0000/0000");
data/garlic-1.6/read_config.c:127:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->left_colorAA[n], "white");
data/garlic-1.6/read_config.c:128:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->middle_colorAA[n], "gray");
data/garlic-1.6/read_config.c:129:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->right_colorAA[n], "DarkGray");
data/garlic-1.6/read_config.c:133:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->surface_outer_color_schemeA, "magenta");
data/garlic-1.6/read_config.c:134:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (configSP->surface_inner_color_schemeA, "blue");
data/garlic-1.6/read_fasta.c:51:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineA[STRINGSIZE];
data/garlic-1.6/read_fasta.c:68:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open file!");
data/garlic-1.6/read_fasta.c:126:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Sequence too long!");
data/garlic-1.6/read_pdb.c:79:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineA[STRINGSIZE];
data/garlic-1.6/read_pdb.c:110:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (mol_complexSP->unique_PDB_codeA, "XXXX");
data/garlic-1.6/read_pdb.c:190:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + n,
data/garlic-1.6/read_pdb.c:193:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + n,
data/garlic-1.6/read_pdb.c:196:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + n,
data/garlic-1.6/read_template_file.c:50:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineA[STRINGSIZE];
data/garlic-1.6/read_template_file.c:126:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/read_template_file.c:129:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/read_template_file.c:132:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/register.c:36:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outfile_nameA[SHORTSTRINGSIZE];
data/garlic-1.6/register.c:37:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char command_stringA[STRINGSIZE];
data/garlic-1.6/register.c:45:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (outfile_nameA, "garlic_reg.txt");
data/garlic-1.6/register.c:46:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((outfileP = fopen (outfile_nameA, "w")) != NULL) break;
data/garlic-1.6/register.c:49:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (outfile_nameA, "/tmp/garlic_reg.txt");
data/garlic-1.6/register.c:50:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((outfileP = fopen (outfile_nameA, "w")) != NULL) break;
data/garlic-1.6/register.c:67:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (command_stringA, "mailx zucic@garlic.mefos.hr < ");
data/garlic-1.6/register.c:73:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (command_stringA, "/bin/mailx zucic@garlic.mefos.hr < ");
data/garlic-1.6/register.c:79:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (command_stringA, "/usr/bin/mailx zucic@garlic.mefos.hr < ");
data/garlic-1.6/replace.c:117:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bad_residue_nameA[10];
data/garlic-1.6/replace.c:167:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Default structure is empty!");
data/garlic-1.6/replace.c:203:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA,
data/garlic-1.6/replace.c:458:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Memory reallocation failed!");
data/garlic-1.6/replace.c:494:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/replace.c:545:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/replace.c:883:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (old_first_atomSP, new_first_atomSP, bytesN);
data/garlic-1.6/representative_atoms.c:61:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char polar_nameAA[13][4] =
data/garlic-1.6/representative_atoms.c:65:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char representative_atomAA[13][ATOMNAMESIZE] =
data/garlic-1.6/residue_ranges.c:46:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/save.c:50:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/save.c:52:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char token_copyA[STRINGSIZE];
data/garlic-1.6/save.c:69:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Missing the output file name!");
data/garlic-1.6/save.c:75:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fileP = fopen (tokenA, "w")) == NULL)
data/garlic-1.6/save.c:77:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open output file!");
data/garlic-1.6/save.c:102:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Catch the complex which is not empty!");
data/garlic-1.6/save_sec_structure.c:45:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineA[STRINGSIZE];
data/garlic-1.6/save_sec_structure.c:47:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/save_sec_structure.c:66:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "File name missing!");
data/garlic-1.6/save_sec_structure.c:72:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileP = fopen (tokenA, "w");
data/garlic-1.6/save_sec_structure.c:75:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open file!");
data/garlic-1.6/save_seq_w_numbers.c:46:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineA[STRINGSIZE];
data/garlic-1.6/save_seq_w_numbers.c:48:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/save_seq_w_numbers.c:53:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/save_seq_w_numbers.c:72:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "File name missing!");
data/garlic-1.6/save_seq_w_numbers.c:78:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileP = fopen (tokenA, "w");
data/garlic-1.6/save_seq_w_numbers.c:81:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open file!");
data/garlic-1.6/save_sequence.c:44:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lineA[STRINGSIZE];
data/garlic-1.6/save_sequence.c:46:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/save_sequence.c:50:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/save_sequence.c:69:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "File name missing!");
data/garlic-1.6/save_sequence.c:75:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fileP = fopen (tokenA, "w");
data/garlic-1.6/save_sequence.c:78:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Failed to open file!");
data/garlic-1.6/scale.c:62:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/scale.c:74:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Scale name missing!");
data/garlic-1.6/scale.c:86:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/scale.c:110:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Keyword not recognized!");
data/garlic-1.6/sec_structure_from.c:55:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/sec_structure_from.c:68:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "No structure loaded!");
data/garlic-1.6/sec_structure_from.c:77:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Complex identifier missing!");
data/garlic-1.6/sec_structure_from.c:85:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad macromolecular complex identifier!");
data/garlic-1.6/sec_structure_from.c:111:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/sec_structure_from.c:144:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/select.c:73:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/select.c:81:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Selection criteria missing!");
data/garlic-1.6/select.c:125:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (runtimeSP->messageA,
data/garlic-1.6/select.c:133:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Selection failed!");
data/garlic-1.6/select_atoms.c:63:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/select_element.c:68:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/select_element.c:74:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char chemical_symbolA[20];
data/garlic-1.6/sequence.c:64:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string_copyA[STRINGSIZE];
data/garlic-1.6/sequence.c:69:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/sequence.c:98:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Command parameter(s) missing!");
data/garlic-1.6/sequence.c:154:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Keyword not recognized!");
data/garlic-1.6/sequence_from.c:59:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/sequence_from.c:83:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "No structure loaded!");
data/garlic-1.6/sequence_from.c:92:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Complex identifier missing!");
data/garlic-1.6/sequence_from.c:100:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad macromolecular complex identifier!");
data/garlic-1.6/sequence_from.c:126:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/sequence_from.c:158:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Sequence too long!");
data/garlic-1.6/set.c:81:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char first_tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/set.c:82:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char second_tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/set.c:96:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/set.c:108:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The angle is missing!");
data/garlic-1.6/set.c:126:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Unable to extract the angle!");
data/garlic-1.6/small_ramachandran.c:64:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char dummy_nameA[10] = "XXX";
data/garlic-1.6/special_select.c:121:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/special_select.c:122:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char full_stringA[STRINGSIZE];
data/garlic-1.6/special_select.c:136:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/*/*");
data/garlic-1.6/special_select.c:140:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA,
data/garlic-1.6/special_select.c:146:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA,
data/garlic-1.6/special_select.c:151:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/PHE,TYR,TRP,HIS/*");
data/garlic-1.6/special_select.c:155:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/ILE,LEU,VAL/*");
data/garlic-1.6/special_select.c:159:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/GLY,ALA,SER,THR,CYS,VAL,PRO,ASP,ASN/*");
data/garlic-1.6/special_select.c:163:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/GLY,ALA,SER/*");
data/garlic-1.6/special_select.c:167:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/ARG,LYS,HIS/*");
data/garlic-1.6/special_select.c:171:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/GLU,ASP/*");
data/garlic-1.6/special_select.c:175:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/ARG,LYS,HIS/*");
data/garlic-1.6/special_select.c:179:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/GLU,ASP/*");
data/garlic-1.6/special_select.c:183:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/ARG,LYS,HIS,GLU,ASP/*");
data/garlic-1.6/special_select.c:187:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/*/CA,C,N,O,H");
data/garlic-1.6/special_select.c:191:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (full_stringA, "*/*/*/* EXCEPT CA,C,N,O,H");
data/garlic-1.6/ssb.c:60:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/ssb.c:72:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/stereo.c:63:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/sticks.c:71:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/sticks.c:80:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Positive value expected!");
data/garlic-1.6/structure.c:68:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string_copyA[STRINGSIZE];
data/garlic-1.6/structure.c:73:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/structure.c:103:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Command parameter(s) missing!");
data/garlic-1.6/structure.c:159:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Keyword not recognized!");
data/garlic-1.6/tag.c:78:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/tag.c:80:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char token_copyA[STRINGSIZE];
data/garlic-1.6/tag.c:97:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Missing tag!");
data/garlic-1.6/tag.c:146:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The tag should be enclosed in qoutes!");
data/garlic-1.6/text_background.c:60:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/text_background.c:72:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Text background color missing!");
data/garlic-1.6/text_background.c:85:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&guiSP->output_winS.bg_rgbS,
data/garlic-1.6/text_foreground.c:60:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/text_foreground.c:72:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Text foreground color missing!");
data/garlic-1.6/text_foreground.c:85:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&guiSP->output_winS.fg_rgbS,
data/garlic-1.6/text_foreground.c:88:1: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&guiSP->control_winS.fg_rgbS,
data/garlic-1.6/title.c:83:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[STRINGSIZE];
data/garlic-1.6/title.c:102:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Command incomplete!");
data/garlic-1.6/title.c:113:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad token index!");
data/garlic-1.6/title.c:125:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/title.c:135:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad x coordinate!");
data/garlic-1.6/title.c:144:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad y coordinate!");
data/garlic-1.6/title.c:173:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad x coordinate!");
data/garlic-1.6/title.c:182:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad y coordinate!");
data/garlic-1.6/typedefs.h:60:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char log_file_nameA[STRINGSIZE];
data/garlic-1.6/typedefs.h:65:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char geometryA[SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:68:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char font_nameA[SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:69:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cursor_nameA[SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:109:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bg_colorA[SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:110:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fg_colorA[SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:111:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char text_bg_colorA[SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:112:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char text_fg_colorA[SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:118:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char left_colorAA[MAXCOLORSURFACES][SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:119:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char middle_colorAA[MAXCOLORSURFACES][SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:120:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char right_colorAA[MAXCOLORSURFACES][SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:128:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char surface_outer_color_schemeA[SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:129:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char surface_inner_color_schemeA[SHORTSTRINGSIZE];
data/garlic-1.6/typedefs.h:377:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char display_nameA[STRINGSIZE];
data/garlic-1.6/typedefs.h:498:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char atom_nameA[ATOMNAMESIZE]; /* With spaces */
data/garlic-1.6/typedefs.h:499:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pure_atom_nameA[ATOMNAMESIZE]; /* Without spaces */
data/garlic-1.6/typedefs.h:500:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char chemical_symbolA[SYMBOLSIZE]; /* Right justified */
data/garlic-1.6/typedefs.h:504:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE]; /* With spaces */
data/garlic-1.6/typedefs.h:505:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pure_residue_nameA[RESNAMESIZE]; /* Without s. */
data/garlic-1.6/typedefs.h:519:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char segmentA[SEGNAMESIZE];
data/garlic-1.6/typedefs.h:520:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char elementA[ELEMNAMESIZE]; /* With spaces */
data/garlic-1.6/typedefs.h:521:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pure_elementA[ELEMNAMESIZE]; /* Without spaces */
data/garlic-1.6/typedefs.h:522:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char chargeA[CHARGESIZE];
data/garlic-1.6/typedefs.h:871:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unique_PDB_codeA[PDBCODESIZE];
data/garlic-1.6/typedefs.h:875:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tagA[TAGSIZE];
data/garlic-1.6/typedefs.h:878:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file_nameA[STRINGSIZE];
data/garlic-1.6/typedefs.h:1091:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pure_residue_nameA[RESNAMESIZE];
data/garlic-1.6/typedefs.h:1169:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char curr_commandA[COMMSTRINGSIZE];
data/garlic-1.6/typedefs.h:1173:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char messageA[COMMSTRINGSIZE];
data/garlic-1.6/typedefs.h:1289:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char chainIDA[MAXFIELDS];
data/garlic-1.6/typedefs.h:1296:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameAA[MAXFIELDS][RESNAMESIZE];
data/garlic-1.6/typedefs.h:1299:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char atom_nameAA[MAXFIELDS][ATOMNAMESIZE];
data/garlic-1.6/venn.c:70:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenA[SHORTSTRINGSIZE];
data/garlic-1.6/venn.c:118:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/venn.c:128:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/wheel.c:147:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/wheel.c:156:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Bad range (check indices)!");
data/garlic-1.6/wheel_bottom_view.c:72:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/wheel_bottom_view.c:85:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char labelA[SHORTSTRINGSIZE];
data/garlic-1.6/wheel_bottom_view.c:97:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The sequence buffer is empty!");
data/garlic-1.6/wheel_bottom_view.c:125:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The specified range is empty!");
data/garlic-1.6/wheel_top_view.c:72:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char residue_nameA[RESNAMESIZE];
data/garlic-1.6/wheel_top_view.c:85:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char labelA[SHORTSTRINGSIZE];
data/garlic-1.6/wheel_top_view.c:97:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The sequence buffer is empty!");
data/garlic-1.6/wheel_top_view.c:125:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "The specified range is empty!");
data/garlic-1.6/window.c:43:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string_copyA[STRINGSIZE];
data/garlic-1.6/window.c:63:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA,
data/garlic-1.6/window.c:72:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (runtimeSP->messageA, "Positive value expected!");
data/garlic-1.6/write_hints.c:39:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[STRINGSIZE];
data/garlic-1.6/write_hints.c:49:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA,
data/garlic-1.6/write_hints.c:57:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "http://garlic.mefos.hr/garlic-1.6");
data/garlic-1.6/write_hints.c:64:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Author: http://garlic.mefos.hr/zucic");
data/garlic-1.6/write_hints.c:74:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "References:");
data/garlic-1.6/write_hints.c:81:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Damir Zucic and Davor Juretic,");
data/garlic-1.6/write_hints.c:86:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Precise Annotation of Transmembrane Segments");
data/garlic-1.6/write_hints.c:91:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "with Garlic - a Free Molecular Visualization Program,");
data/garlic-1.6/write_hints.c:96:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Croatica Chemica Acta Vol. 77, No. 1-2, pp. 397-401 (2004).");
data/garlic-1.6/write_hints.c:101:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Free PDF:");
data/garlic-1.6/write_hints.c:106:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "http://public.carnet.hr/ccacaa/CCA-PDF/cca2004/v77-n1_n2/CCA_77_2004_397-401_zucic.pdf");
data/garlic-1.6/write_hints.c:111:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Damir Zucic,");
data/garlic-1.6/write_hints.c:116:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Annotation of Transmembrane Segments of Experimentally");
data/garlic-1.6/write_hints.c:121:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Solved Bacterial Porins and Adhesins,");
data/garlic-1.6/write_hints.c:126:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Croatica Chemica Acta Vol. 78, No. 2, pp. 151-158 (2005).");
data/garlic-1.6/write_hints.c:131:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Free PDF:");
data/garlic-1.6/write_hints.c:136:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "http://jagor.srce.hr/ccacaa/CCA-PDF/cca2005/v78-n2/CCA_78_2005_151-158_Zucic.pdf");
data/garlic-1.6/write_hints.c:146:1: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stringA, "Encourage garlic development - type reg to register!");
data/garlic-1.6/write_line.c:81:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stringA[STRINGSIZE];
data/garlic-1.6/write_line.c:95:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%5d", raw_atomSP->serialI);
data/garlic-1.6/write_line.c:100:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%-4.4s", raw_atomSP->atom_nameA);
data/garlic-1.6/write_line.c:105:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%-2.2s", raw_atomSP->chemical_symbolA);
data/garlic-1.6/write_line.c:110:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%c", raw_atomSP->remoteness_indicator);
data/garlic-1.6/write_line.c:115:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%c", raw_atomSP->branch_designator);
data/garlic-1.6/write_line.c:120:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%c", raw_atomSP->alt_location);
data/garlic-1.6/write_line.c:125:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%-3.3s", raw_atomSP->residue_nameA);
data/garlic-1.6/write_line.c:130:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%c", raw_atomSP->chainID);
data/garlic-1.6/write_line.c:135:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%4d", raw_atomSP->residue_sequenceI);
data/garlic-1.6/write_line.c:140:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%c", raw_atomSP->residue_insertion_code);
data/garlic-1.6/write_line.c:145:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%8.3f%8.3f%8.3f",
data/garlic-1.6/write_line.c:151:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%6.2f", raw_atomSP->occupancy);
data/garlic-1.6/write_line.c:156:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%6.2f", raw_atomSP->temperature_factor);
data/garlic-1.6/write_line.c:161:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%-4.4s", raw_atomSP->segmentA);
data/garlic-1.6/write_line.c:166:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%-2.2s", raw_atomSP->elementA);
data/garlic-1.6/write_line.c:171:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (currP, "%-2.2s", raw_atomSP->chargeA);
data/garlic-1.6/zebra.c:93:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/zebra.c:99:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/zebra.c:105:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/zebra.c:119:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->left_rgbSA + surfaceI,
data/garlic-1.6/zebra.c:125:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->middle_rgbSA + surfaceI,
data/garlic-1.6/zebra.c:131:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (curr_atomSP->right_rgbSA + surfaceI,
data/garlic-1.6/add_char.c:71:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (stringA, runtimeSP->curr_commandA, carriage_pos);
data/garlic-1.6/add_char.c:74:2: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (stringA,
data/garlic-1.6/alpha_membrane.c:182:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (destP, residue_nameP, max_length);
data/garlic-1.6/alpha_membrane.c:200:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/atom_names.c:44:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (stringP) == 0) return -1;
data/garlic-1.6/atom_names.c:68:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (selectSP->atom_nameAA[nameI],
data/garlic-1.6/atoms.c:75:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/atoms.c:102:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/background.c:72:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/background.c:77:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->bg_colorA, tokenA, SHORTSTRINGSIZE - 1);
data/garlic-1.6/balls.c:75:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/balls.c:83:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/blur.c:106:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/blur.c:116:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/bonds.c:91:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/bonds.c:110:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/button_press.c:149:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (label0A, stringA, SHORTSTRINGSIZE - 1);
data/garlic-1.6/button_press.c:159:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (label1A, label0A, SHORTSTRINGSIZE - 1);
data/garlic-1.6/button_press.c:196:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/button_press.c:244:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/button_press.c:259:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/button_press.c:267:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (label3A, label2A, SHORTSTRINGSIZE - 1);
data/garlic-1.6/button_press.c:272:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (label2A, label1A, SHORTSTRINGSIZE - 1);
data/garlic-1.6/button_press.c:277:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (label1A, label0A, SHORTSTRINGSIZE - 1);
data/garlic-1.6/catch.c:79:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/catch.c:87:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/catch.c:119:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/center.c:80:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/center.c:99:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/center.c:125:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/chains.c:44:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (stringP) == 0) return -1;
data/garlic-1.6/chains.c:67:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (tokenP) != 1) return -1;
data/garlic-1.6/check_dist.c:82:1: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (atomic_pairA, atom2SP->raw_atomS.chemical_symbolA, 2);
data/garlic-1.6/color.c:91:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/color.c:107:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_backbone.c:108:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_fading.c:74:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_fading.c:165:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_fading.c:174:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_fading.c:183:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_move.c:70:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_rotate.c:74:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_rotate.c:86:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_rotate.c:95:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_rotate.c:103:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_slab.c:74:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_slab.c:165:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_slab.c:174:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_slab.c:183:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_translate.c:74:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_translate.c:86:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_translate.c:95:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comm_translate.c:104:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/command_dump.c:69:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/command_dump.c:74:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (keywordA, tokenA, 3);
data/garlic-1.6/command_dump.c:86:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (string_copyA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/command_dump.c:94:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/command_dump.c:101:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/command_dump.c:108:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/command_dump.c:116:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/compare.c:101:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/compare.c:120:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/compare.c:128:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/compare.c:156:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/compare.c:164:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/compare.c:171:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/comparison_mouse.c:148:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/comparison_mouse.c:151:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/comparison_mouse.c:155:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/comparison_mouse.c:211:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (nameA, nameP, name_length);
data/garlic-1.6/comparison_mouse.c:220:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/comparison_mouse.c:224:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/comparison_mouse.c:231:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (nameA, nameP, name_length);
data/garlic-1.6/comparison_mouse.c:242:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/copy_sequence.c:66:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (destP, sourceP, max_length);
data/garlic-1.6/create.c:111:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/create.c:120:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/create.c:176:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (bad_residue_nameA, curr_residue_nameP, 3);
data/garlic-1.6/create.c:180:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/create.c:189:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/create.c:200:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/create_log_file.c:56:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (path_nameA, env_valueP, STRINGSIZE - 1);
data/garlic-1.6/create_log_file.c:60:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = (int) strlen (path_nameA) - 1;
data/garlic-1.6/create_log_file.c:61:28: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
if (path_nameA[n] != '/') strcat (path_nameA, "/");
data/garlic-1.6/create_log_file.c:64:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = STRINGSIZE - (int) strlen (path_nameA) - 1;
data/garlic-1.6/create_log_file.c:65:2: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (path_nameA, log_file_nameP, n);
data/garlic-1.6/discard.c:97:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/discard.c:223:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/discard.c:286:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/dock.c:91:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/dock.c:138:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/dock.c:146:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/dock.c:179:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/dock.c:188:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/dock.c:197:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/draw_labels.c:125:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/draw_plots.c:147:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/draw_plots.c:183:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/draw_plots.c:847:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/draw_plots.c:849:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_plots.c:870:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_seahorse.c:252:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_seahorse.c:268:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/draw_squid.c:218:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_squid.c:234:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/draw_tags.c:99:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tag_length = strlen (curr_mol_complexSP->tagA);
data/garlic-1.6/draw_titles.c:59:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
curr_title_length = strlen (curr_titleP);
data/garlic-1.6/draw_venn.c:90:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/draw_venn.c:119:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/draw_venn.c:160:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/draw_venn.c:486:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:497:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:508:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:520:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:532:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:544:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:556:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:569:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:581:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:593:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:601:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:609:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:613:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:621:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:625:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:633:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:637:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:645:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:649:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:657:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:661:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:669:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:675:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:684:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:688:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:697:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:705:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:713:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:717:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:725:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:729:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:737:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:741:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:749:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:755:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:764:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:768:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:777:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:785:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:793:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:797:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:805:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:809:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:817:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:823:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:832:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:836:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:845:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:849:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:858:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:862:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_width = XTextWidth (guiSP->main_winS.fontSP, stringA, strlen (stringA));
data/garlic-1.6/draw_venn.c:871:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stringA, strlen (stringA));
data/garlic-1.6/eat_left_char.c:58:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (stringA, runtimeSP->curr_commandA, carriage_pos);
data/garlic-1.6/eat_left_char.c:62:1: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (stringA,
data/garlic-1.6/eat_right_char.c:55:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (stringA, runtimeSP->curr_commandA, carriage_pos);
data/garlic-1.6/eat_right_char.c:59:1: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (stringA,
data/garlic-1.6/edit.c:130:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:193:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:215:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:261:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:283:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:335:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:387:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:423:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:475:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:497:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:525:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:543:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:566:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:589:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:713:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:734:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/edit.c:773:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/errmsg.c:39:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (filename) != 0) fprintf (stderr, ", file: %s", filename);
data/garlic-1.6/errmsg.c:41:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (s1) != 0) fprintf (stderr, "%s", s1);
data/garlic-1.6/errmsg.c:42:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (s2) != 0) fprintf (stderr, "%s", s2);
data/garlic-1.6/errmsg.c:43:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (s3) != 0) fprintf (stderr, "%s", s3);
data/garlic-1.6/errmsg.c:44:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (s4) != 0) fprintf (stderr, "%s", s4);
data/garlic-1.6/exclude.c:56:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (string_copyA, stringP, STRINGSIZE - 1);
data/garlic-1.6/execute_command1.c:285:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (commandA, runtimeSP->curr_commandA, runtimeSP->command_length);
data/garlic-1.6/execute_command1.c:316:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/execute_command1.c:622:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/execute_command1.c:939:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/execute_command2.c:261:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (commandA, runtimeSP->curr_commandA, runtimeSP->command_length);
data/garlic-1.6/execute_command2.c:292:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/execute_command2.c:598:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/execute_command2.c:903:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/execute_script.c:93:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/execute_script.c:102:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/execute_script.c:117:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_length = strlen (commandA);
data/garlic-1.6/execute_script.c:133:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (runtimeSP->curr_commandA, commandA, line_length);
data/garlic-1.6/extract_args.c:97:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->log_file_nameA, argv[i], n);
data/garlic-1.6/extract_args.c:351:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->left_colorAA[surfaceI], argv[i], n);
data/garlic-1.6/extract_args.c:385:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->middle_colorAA[surfaceI], argv[i], n);
data/garlic-1.6/extract_args.c:419:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->right_colorAA[surfaceI], argv[i], n);
data/garlic-1.6/extract_args.c:443:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (guiSP->display_nameA, argv[i], n);
data/garlic-1.6/extract_args.c:468:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->geometryA, argv[i], n);
data/garlic-1.6/extract_args.c:491:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->bg_colorA, argv[i], n);
data/garlic-1.6/extract_args.c:514:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->fg_colorA, argv[i], n);
data/garlic-1.6/extract_args.c:536:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->font_nameA, argv[i], n);
data/garlic-1.6/extract_args.c:559:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->text_bg_colorA, argv[i], n);
data/garlic-1.6/extract_args.c:582:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->text_fg_colorA, argv[i], n);
data/garlic-1.6/extract_args.c:604:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->cursor_nameA, argv[i], n);
data/garlic-1.6/extract_args.c:630:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (mol_file_nameP, argv[j], n);
data/garlic-1.6/extract_field.c:41:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen (substringP);
data/garlic-1.6/extract_index.c:38:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (copyA, input_stringP, SHORTSTRINGSIZE - 1);
data/garlic-1.6/extract_phrase.c:66:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen (outP);
data/garlic-1.6/extract_phrase.c:76:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen (outP);
data/garlic-1.6/font.c:79:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/font.c:88:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/foreground.c:72:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/foreground.c:77:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->fg_colorA, tokenA, SHORTSTRINGSIZE - 1);
data/garlic-1.6/group.c:122:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:135:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:154:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:162:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:266:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:285:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:293:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:423:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:443:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:497:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/group.c:536:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/headerline.c:94:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (P, lineP, HEADERLINESIZE - 1);
data/garlic-1.6/hybonds.c:96:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/hyphob_function1.c:97:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/hyphob_function2.c:98:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/hyphob_function3.c:98:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/hyphob_function4.c:98:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/hyphob_function5.c:123:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/hyphob_function6.c:123:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/include.c:55:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (string_copyA, stringP, STRINGSIZE - 1);
data/garlic-1.6/inform_user.c:43:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
message_length = strlen (messageP);
data/garlic-1.6/init_hyphob.c:65:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/init_hyphob.c:82:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/input_refresh.c:72:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (left_partA, runtimeSP->curr_commandA, carriage_pos);
data/garlic-1.6/input_refresh.c:75:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (right_partA, runtimeSP->curr_commandA + carriage_pos, the_rest);
data/garlic-1.6/input_refresh.c:106:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
left_part_length = strlen (left_partP);
data/garlic-1.6/input_refresh.c:127:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
x0, y0, right_partA, strlen (right_partA));
data/garlic-1.6/is_old.c:39:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (string_copyA, stringP, SHORTSTRINGSIZE - 1);
data/garlic-1.6/is_pdb.c:84:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_length = strlen (lineA);
data/garlic-1.6/labels.c:83:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/load.c:94:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/load.c:99:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
message_length = strlen (messageA);
data/garlic-1.6/load.c:123:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/load_complex.c:104:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (new_mol_complexSP->file_nameA, mol_file_nameP, STRINGSIZE - 1);
data/garlic-1.6/load_sec_structure.c:73:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (lineA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/load_sec_structure.c:87:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/load_sec_structure.c:96:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/load_sec_structure.c:104:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_length = strlen (lineA);
data/garlic-1.6/load_sec_structure.c:155:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/load_sec_structure.c:188:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/load_sequence.c:86:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (lineA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/load_sequence.c:100:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/load_sequence.c:114:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/load_sequence.c:135:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
token_length = strlen (tokenA);
data/garlic-1.6/load_sequence.c:141:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/load_sequence.c:165:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/load_sequence.c:172:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (P, tokenA, max_length);
data/garlic-1.6/log.c:69:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/log.c:75:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (token_copyA, tokenA, STRINGSIZE - 1);
data/garlic-1.6/log.c:111:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (path_nameA, env_valueP, STRINGSIZE - 1);
data/garlic-1.6/log.c:115:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = (int) strlen (path_nameA) - 1;
data/garlic-1.6/log.c:116:29: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
if (path_nameA[n] != '/') strcat (path_nameA, "/");
data/garlic-1.6/log.c:119:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = STRINGSIZE - (int) strlen (path_nameA) - 1;
data/garlic-1.6/log.c:120:3: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (path_nameA, P, n);
data/garlic-1.6/log.c:131:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/log.c:136:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->log_file_nameA, tokenA, STRINGSIZE - 1);
data/garlic-1.6/make_pixmap.c:124:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (line_copyA, *(dataPP + i), STRINGSIZE - 1);
data/garlic-1.6/make_pixmap2.c:125:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (line_copyA, *(dataPP + i), STRINGSIZE - 1);
data/garlic-1.6/membrane.c:96:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:144:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:199:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:208:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:245:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:254:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:294:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:302:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:334:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:382:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/membrane.c:406:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/motion_notify.c:197:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:207:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:219:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:228:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:235:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:242:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:251:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:259:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:269:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:277:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:287:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:295:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:305:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:313:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:323:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:331:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:341:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:349:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:359:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:368:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:377:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/motion_notify.c:406:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (stringA, " ");
data/garlic-1.6/motion_notify.c:412:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/motion_notify.c:428:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, residue_name_length);
data/garlic-1.6/motion_notify.c:457:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (stringA, " ");
data/garlic-1.6/motion_notify.c:462:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/motion_notify.c:469:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/neighborhood.c:116:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/open_config_file.c:64:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (config_file_nameA, home_dirP, n);
data/garlic-1.6/open_config_file.c:66:1: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
strncat (config_file_nameA, "/.garlicrc", 11);
data/garlic-1.6/open_config_file.c:75:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (config_file_nameA, home_dirP, n);
data/garlic-1.6/open_config_file.c:77:1: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
strncat (config_file_nameA, "/garlic/.garlicrc", 18);
data/garlic-1.6/open_template_file.c:66:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (template_file_nameA, home_dirP, n);
data/garlic-1.6/open_template_file.c:68:1: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
strncat (template_file_nameA, "/residues.pdb", 13);
data/garlic-1.6/open_template_file.c:77:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (template_file_nameA, home_dirP, n);
data/garlic-1.6/open_template_file.c:79:1: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
strncat (template_file_nameA, "/garlic/residues.pdb", 20);
data/garlic-1.6/openfile_r.c:62:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (path_nameA, env_valueP, STRINGSIZE - 1);
data/garlic-1.6/openfile_r.c:66:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = (int) strlen (path_nameA) - 1;
data/garlic-1.6/openfile_r.c:67:28: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
if (path_nameA[n] != '/') strcat (path_nameA, "/");
data/garlic-1.6/openfile_r.c:70:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = STRINGSIZE - (int) strlen (path_nameA) - 1;
data/garlic-1.6/openfile_r.c:71:2: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (path_nameA, file_nameP + 5, n);
data/garlic-1.6/openfile_r.c:83:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (file_nameP) == 1) return NULL;
data/garlic-1.6/openfile_r.c:92:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (path_nameA, env_valueP, STRINGSIZE - 1);
data/garlic-1.6/openfile_r.c:96:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = (int) strlen (path_nameA) - 1;
data/garlic-1.6/openfile_r.c:97:29: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
if (path_nameA[n] != '/') strcat (path_nameA, "/");
data/garlic-1.6/openfile_r.c:100:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = STRINGSIZE - (int) strlen (path_nameA) - 1;
data/garlic-1.6/openfile_r.c:101:3: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (path_nameA, file_nameP + 1, n);
data/garlic-1.6/openfile_r.c:117:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen (env_valueP);
data/garlic-1.6/openfile_r.c:138:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (path_nameA, copyA, n);
data/garlic-1.6/openfile_r.c:141:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = STRINGSIZE - (int) strlen (path_nameA) - 1;
data/garlic-1.6/openfile_r.c:142:3: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (path_nameA, file_nameP + 1, n);
data/garlic-1.6/openfile_r.c:165:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (path_nameA, env_valueP, STRINGSIZE - 1);
data/garlic-1.6/openfile_r.c:169:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = (int) strlen (path_nameA) - 1;
data/garlic-1.6/openfile_r.c:170:28: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
if (path_nameA[n] != '/') strcat (path_nameA, "/");
data/garlic-1.6/openfile_r.c:173:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = STRINGSIZE - (int) strlen (path_nameA) - 1;
data/garlic-1.6/openfile_r.c:174:2: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (path_nameA, file_nameP, n);
data/garlic-1.6/openfile_r.c:185:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (copyA, env_valueP, STRINGSIZE - 1);
data/garlic-1.6/openfile_r.c:196:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (path_nameA, tokenP, STRINGSIZE - 1);
data/garlic-1.6/openfile_r.c:200:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = (int) strlen (path_nameA) - 1;
data/garlic-1.6/openfile_r.c:201:29: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
if (path_nameA[n] != '/') strcat (path_nameA, "/");
data/garlic-1.6/openfile_r.c:204:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = STRINGSIZE - (int) strlen (path_nameA) - 1;
data/garlic-1.6/openfile_r.c:205:3: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat (path_nameA, file_nameP, n);
data/garlic-1.6/parse_pattern.c:116:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((int) strlen (subtokenA) > max_length)
data/garlic-1.6/parse_pattern.c:122:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/parse_pattern.c:139:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/parse_pattern.c:151:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/parse_pattern.c:166:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/parse_sec_structure.c:91:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/parse_sequence.c:76:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((int) strlen (tokenA) > max_length)
data/garlic-1.6/parse_sequence.c:81:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/pattern.c:73:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (string_copyA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/pattern.c:100:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/pattern.c:120:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/pattern.c:129:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/pattern.c:145:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/pdb_atom.c:123:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_length = strlen (lineP);
data/garlic-1.6/pdb_id.c:65:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
record_length = strlen (P);
data/garlic-1.6/pdb_id.c:69:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (codeA, P + first_char_pos, PDBCODESIZE - 1);
data/garlic-1.6/pick_bond.c:105:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/pick_bond.c:134:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/pick_bond.c:221:1: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy (runtimeSP->messageA, "");
data/garlic-1.6/pick_bond.c:222:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plane.c:125:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plane.c:134:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plane.c:168:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plane.c:177:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plane.c:202:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plot.c:125:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plot.c:134:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plot.c:300:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plot.c:313:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plot.c:334:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/plot_mouse.c:106:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, residue_name_length);
data/garlic-1.6/plot_mouse.c:131:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/plot_mouse.c:137:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/plot_mouse.c:141:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/plot_mouse.c:156:1: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (stringA, " ");
data/garlic-1.6/plot_mouse.c:162:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/plot_mouse.c:172:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, residue_name_length);
data/garlic-1.6/plot_mouse.c:175:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (stringA, " ");
data/garlic-1.6/plot_mouse.c:180:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/plot_mouse.c:188:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/position.c:84:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/prepare_cursor.c:149:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (nameP) > 0)
data/garlic-1.6/print_cursor_names.c:75:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name_length = strlen (nameAA[i]);
data/garlic-1.6/probe.c:84:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/probe.c:92:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/quick_select.c:85:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (copyA, stringP, STRINGSIZE - 1);
data/garlic-1.6/radius.c:62:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/radius.c:70:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/rama_frame.c:227:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/rama_frame.c:240:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/rama_frame.c:247:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/rama_frame.c:254:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/rama_frame.c:260:1: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy (stringA, "0");
data/garlic-1.6/rama_frame.c:261:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/rama_frame.c:270:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/rama_frame.c:285:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/rama_frame.c:300:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/rama_frame.c:315:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_length = strlen (stringA);
data/garlic-1.6/rama_mouse.c:115:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:125:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:133:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:139:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:145:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:155:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:163:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:173:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:181:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:191:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/rama_mouse.c:199:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x0, screen_y0, stringA, strlen (stringA));
data/garlic-1.6/ramachandran.c:115:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/read_config.c:273:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (s) <= 5) continue;
data/garlic-1.6/read_config.c:281:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->geometryA,
data/garlic-1.6/read_config.c:293:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->font_nameA,
data/garlic-1.6/read_config.c:305:25: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->cursor_nameA,
data/garlic-1.6/read_config.c:460:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->bg_colorA,
data/garlic-1.6/read_config.c:473:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->fg_colorA,
data/garlic-1.6/read_config.c:486:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->text_bg_colorA,
data/garlic-1.6/read_config.c:499:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->text_fg_colorA,
data/garlic-1.6/read_config.c:525:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->left_colorAA[surfaceI],
data/garlic-1.6/read_config.c:540:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->middle_colorAA[surfaceI],
data/garlic-1.6/read_config.c:555:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->right_colorAA[surfaceI],
data/garlic-1.6/read_config.c:569:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->surface_outer_color_schemeA,
data/garlic-1.6/read_config.c:583:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->surface_inner_color_schemeA,
data/garlic-1.6/read_fasta.c:69:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/read_fasta.c:77:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_length = strlen (lineA);
data/garlic-1.6/read_fasta.c:128:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/read_fasta.c:144:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "ALA", max_length);
data/garlic-1.6/read_fasta.c:148:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "ASX", max_length);
data/garlic-1.6/read_fasta.c:152:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "CYS", max_length);
data/garlic-1.6/read_fasta.c:156:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "ASP", max_length);
data/garlic-1.6/read_fasta.c:160:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "GLU", max_length);
data/garlic-1.6/read_fasta.c:164:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "PHE", max_length);
data/garlic-1.6/read_fasta.c:168:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "GLY", max_length);
data/garlic-1.6/read_fasta.c:172:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "HIS", max_length);
data/garlic-1.6/read_fasta.c:176:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "ILE", max_length);
data/garlic-1.6/read_fasta.c:180:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "UNK", max_length);
data/garlic-1.6/read_fasta.c:184:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "LYS", max_length);
data/garlic-1.6/read_fasta.c:188:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "LEU", max_length);
data/garlic-1.6/read_fasta.c:192:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "MET", max_length);
data/garlic-1.6/read_fasta.c:196:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "ASN", max_length);
data/garlic-1.6/read_fasta.c:200:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "UNK", max_length);
data/garlic-1.6/read_fasta.c:204:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "PRO", max_length);
data/garlic-1.6/read_fasta.c:208:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "GLN", max_length);
data/garlic-1.6/read_fasta.c:212:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "ARG", max_length);
data/garlic-1.6/read_fasta.c:216:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "SER", max_length);
data/garlic-1.6/read_fasta.c:220:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "THR", max_length);
data/garlic-1.6/read_fasta.c:224:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "UNK", max_length);
data/garlic-1.6/read_fasta.c:228:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "VAL", max_length);
data/garlic-1.6/read_fasta.c:232:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "TRP", max_length);
data/garlic-1.6/read_fasta.c:236:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "UNK", max_length);
data/garlic-1.6/read_fasta.c:240:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "TYR", max_length);
data/garlic-1.6/read_fasta.c:244:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (P, "GLX", max_length);
data/garlic-1.6/read_file.c:54:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (file_nameP) == 0) return 0;
data/garlic-1.6/read_pdb.c:227:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((int) strlen (lineA) < model_serial_end + 2) continue;
data/garlic-1.6/replace.c:168:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/replace.c:206:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/replace.c:262:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (bad_residue_nameA, old_residue_nameP, max_length);
data/garlic-1.6/replace.c:267:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/replace.c:314:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (bad_residue_nameA, new_residue_nameP, max_length);
data/garlic-1.6/replace.c:318:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/replace.c:371:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/replace.c:459:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/replace.c:496:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/replace.c:547:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/replace_command.c:71:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (runtimeSP->curr_commandA, oldP, COMMSTRINGSIZE - 1);
data/garlic-1.6/replace_command.c:74:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (newP, oldP, COMMSTRINGSIZE - 1);
data/garlic-1.6/replace_command.c:78:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->command_length = strlen (runtimeSP->curr_commandA);
data/garlic-1.6/residue_names.c:44:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (stringP) == 0) return -1;
data/garlic-1.6/residue_names.c:69:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (selectSP->residue_nameAA[nameI],
data/garlic-1.6/residue_ranges.c:52:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (stringP) == 0) return -1;
data/garlic-1.6/save.c:70:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/save.c:78:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/save.c:87:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (token_copyA, tokenA, STRINGSIZE - 1);
data/garlic-1.6/save.c:103:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/save_sec_structure.c:53:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (lineA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/save_sec_structure.c:67:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/save_sec_structure.c:76:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/save_seq_w_numbers.c:59:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (lineA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/save_seq_w_numbers.c:73:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/save_seq_w_numbers.c:82:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/save_seq_w_numbers.c:96:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, nameP, max_length);
data/garlic-1.6/save_sequence.c:56:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (lineA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/save_sequence.c:70:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/save_sequence.c:79:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/save_sequence.c:90:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, nameP, max_length);
data/garlic-1.6/scale.c:75:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/scale.c:88:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/scale.c:111:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sec_structure_from.c:69:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sec_structure_from.c:78:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sec_structure_from.c:86:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sec_structure_from.c:113:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sec_structure_from.c:146:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/select.c:82:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/select.c:127:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/select.c:134:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sequence.c:72:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (string_copyA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/sequence.c:99:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sequence.c:155:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sequence_from.c:84:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sequence_from.c:93:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sequence_from.c:101:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sequence_from.c:128:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sequence_from.c:159:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sequence_from.c:165:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (destP, sourceP, max_length);
data/garlic-1.6/set.c:98:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/set.c:109:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/set.c:127:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/ssb.c:74:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/ssb.c:90:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/stereo.c:81:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sticks.c:73:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/sticks.c:81:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/structure.c:77:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (string_copyA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/structure.c:104:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/structure.c:160:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/tag.c:98:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/tag.c:103:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (token_copyA, tokenA, STRINGSIZE - 1);
data/garlic-1.6/tag.c:147:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/tag.c:169:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (curr_mol_complexSP->tagA, tokenA, TAGSIZE - 1);
data/garlic-1.6/text_background.c:73:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/text_background.c:78:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->text_bg_colorA, tokenA, SHORTSTRINGSIZE - 1);
data/garlic-1.6/text_foreground.c:73:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/text_foreground.c:78:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (configSP->text_fg_colorA, tokenA, SHORTSTRINGSIZE - 1);
data/garlic-1.6/title.c:103:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/title.c:114:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/title.c:127:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/title.c:136:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/title.c:145:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/title.c:159:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (P, tokenA, TITLESTRINGSIZE - 1);
data/garlic-1.6/title.c:174:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/title.c:183:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/title.c:206:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/venn.c:121:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/venn.c:131:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (runtimeSP->messageA);
data/garlic-1.6/warnmsg.c:39:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (filename) != 0) fprintf (stdout, ", file: %s", filename);
data/garlic-1.6/warnmsg.c:41:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (s1) != 0) fprintf (stdout, "%s", s1);
data/garlic-1.6/warnmsg.c:42:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (s2) != 0) fprintf (stdout, "%s", s2);
data/garlic-1.6/warnmsg.c:43:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (s3) != 0) fprintf (stdout, "%s", s3);
data/garlic-1.6/warnmsg.c:44:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (s4) != 0) fprintf (stdout, "%s", s4);
data/garlic-1.6/wheel.c:149:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/wheel.c:157:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/wheel_bottom_view.c:98:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/wheel_bottom_view.c:126:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/wheel_bottom_view.c:204:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/wheel_bottom_view.c:281:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
label_length = strlen (labelA);
data/garlic-1.6/wheel_top_view.c:98:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/wheel_top_view.c:126:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/wheel_top_view.c:204:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (residue_nameA, residue_nameP, max_length);
data/garlic-1.6/wheel_top_view.c:281:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
label_length = strlen (labelA);
data/garlic-1.6/window.c:49:1: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (string_copyA, runtimeSP->curr_commandA, STRINGSIZE - 1);
data/garlic-1.6/window.c:65:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/window.c:73:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
runtimeSP->message_length = strlen (runtimeSP->messageA);
data/garlic-1.6/write_hints.c:52:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:59:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:66:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:76:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:83:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:88:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:93:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:98:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:103:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:108:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:113:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:118:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:123:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:128:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:133:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:138:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_hints.c:148:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
screen_x, screen_y, stringA, strlen (stringA));
data/garlic-1.6/write_line.c:89:26: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if (raw_atomSP->heteroF) strncpy (stringA, "HETATM", 6);
data/garlic-1.6/write_line.c:90:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
else strncpy (stringA, "ATOM ", 6);
ANALYSIS SUMMARY:
Hits = 1467
Lines analyzed = 100621 in approximately 2.79 seconds (36041 lines/second)
Physical Source Lines of Code (SLOC) = 52465
Hits@level = [0] 488 [1] 585 [2] 809 [3] 12 [4] 61 [5] 0
Hits@level+ = [0+] 1955 [1+] 1467 [2+] 882 [3+] 73 [4+] 61 [5+] 0
Hits/KSLOC@level+ = [0+] 37.2629 [1+] 27.9615 [2+] 16.8112 [3+] 1.3914 [4+] 1.16268 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.