Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/gcc-python-plugin-0.17/demo.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-callgraph.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-common.h
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-constant.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-declaration.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-diagnostics.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-gimple.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-internal.h
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-location.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-option.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-private-compat.h
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-rtl.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-tree.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-type.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-variable.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-cfg.c
Examining data/gcc-python-plugin-0.17/gcc-c-api/gcc-function.c
Examining data/gcc-python-plugin-0.17/gcc-python-attribute.c
Examining data/gcc-python-plugin-0.17/gcc-python-callbacks.c
Examining data/gcc-python-plugin-0.17/gcc-python-callgraph.c
Examining data/gcc-python-plugin-0.17/gcc-python-cfg.c
Examining data/gcc-python-plugin-0.17/gcc-python-closure.c
Examining data/gcc-python-plugin-0.17/gcc-python-closure.h
Examining data/gcc-python-plugin-0.17/gcc-python-compat.h
Examining data/gcc-python-plugin-0.17/gcc-python-diagnostics.c
Examining data/gcc-python-plugin-0.17/gcc-python-function.c
Examining data/gcc-python-plugin-0.17/gcc-python-gimple.c
Examining data/gcc-python-plugin-0.17/gcc-python-location.c
Examining data/gcc-python-plugin-0.17/gcc-python-option.c
Examining data/gcc-python-plugin-0.17/gcc-python-parameter.c
Examining data/gcc-python-plugin-0.17/gcc-python-pass.c
Examining data/gcc-python-plugin-0.17/gcc-python-rtl.c
Examining data/gcc-python-plugin-0.17/gcc-python-tree.c
Examining data/gcc-python-plugin-0.17/gcc-python-variable.c
Examining data/gcc-python-plugin-0.17/gcc-python-version.c
Examining data/gcc-python-plugin-0.17/gcc-python-wrappers.h
Examining data/gcc-python-plugin-0.17/gcc-python.c
Examining data/gcc-python-plugin-0.17/libcpychecker_html/test/example1/bug.c
Examining data/gcc-python-plugin-0.17/libcpychecker_html/test/example2/_pylibmcmodule.h
Examining data/gcc-python-plugin-0.17/libcpychecker_html/test/example2/pylibmc-issue-68.c
Examining data/gcc-python-plugin-0.17/libcpychecker_html/test/example3/_mysql.c
Examining data/gcc-python-plugin-0.17/print-gcc-version.c
Examining data/gcc-python-plugin-0.17/test.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_Parse/incorrect_codes_S_and_U/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/code_O_bang/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/code_s/incorrect-constness/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/codes_accepting_null/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/correct_codes_S_and_U/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/correct_converter/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/encodings/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/incorrect_code_z_hash/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/incorrect_codes_S_and_U/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/incorrect_converters/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/keywords/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/typedefs/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/with_PY_SSIZE_T_CLEAN/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyArg_ParseTuple/without_PY_SSIZE_T_CLEAN/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyMethodDef/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyMethodDef/incorrect-types/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/PyMethodDef/missing-sentinel/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/Py_BuildValue/code_O/subclass/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/Py_BuildValue/code_c/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/Py_BuildValue/code_f/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/Py_BuildValue/code_lower_d/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/Py_BuildValue/code_s_hash/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/Py_BuildValue/code_u/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/Py_BuildValue/code_u_hash/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/Py_BuildValue/code_upper_D/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/Py_BuildValue/code_upper_D/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arithmetic/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arithmetic/division-by-zero/definite/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arithmetic/division-by-zero/possible/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arithmetic/fix-trunc-expr/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arithmetic/negative-shift/definite/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arithmetic/negative-shift/possible/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/fully-checked-on-stack/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/fully-checked/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/implicitly-correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/off-by-one/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/partial-initialization-on-stack/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/unchecked/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/upper-checked/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arrays/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arrays2/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arrays3/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arrays4/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arrays5/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arrays6/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/arrays7/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/asm/empty/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/assignment-from-string-const/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/bitfields/reading/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/casts/int-to-char-with-extraction/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/casts/int-to-char-with-implicit-truncation/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/casts/int-to-char-within-range/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/casts/int-to-float/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/casts/int-to-pointer/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/casts/int-to-pointer2/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/casts/pointer-to-long/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/casts/pyobjectptr-to-long/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-eq-max-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-eq-min-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-ge-max-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-ge-min-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-gt-max-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-gt-min-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-le-max-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-le-min-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-lt-max-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-lt-min-of-WithinRange/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/ConcreteValue-lt-two-value-range/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/boundaries/WithinRange-eq-ConcreteValue-in-middle/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/conditionals/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/expressions/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/comparisons/pointers/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/custom-strdup-with-attr/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/custom-strdup/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/exceptions/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/exit/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/function-pointers/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/nested-fields/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/nested-fields2/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/nested-fields3/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/nonnull-attribute/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/read-through-global-ptr-checked/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/read-through-global-ptr-unchecked/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/read-through-uninitialized-ptr/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/real-cst/regular/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/result-decl/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/static-data/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/string-constants/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/switch/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/two-loops/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/uninitialized-data/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/void-return/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/write-through-arg-unchecked/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/write-through-global-ptr-checked/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/write-through-global-ptr-unchecked/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/fileptr-missing-error-check/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/GIL/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyArg_Parse/correct_simple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyArg_ParseTuple/correct_O/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyArg_ParseTuple/correct_O_bang/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyArg_ParseTuple/correct_converter/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyArg_ParseTuple/correct_simple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyArg_ParseTupleAndKeywords/correct_O/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyArg_UnpackTuple/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyArg_UnpackTuple/missing-initialization/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyArg_UnpackTuple/wrong-number-of-varargs/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyBool_FromLong/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyCObject_FromVoidPtr/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyCObject_FromVoidPtrAndDesc/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyCapsule_GetPointer/basic/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_GetItem/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_GetItem/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_GetItemString/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_GetItemString/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_New/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_SetItem/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_SetItem/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_SetItemString/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_SetItemString/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyDict_Size/simple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyErr_Clear/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyErr_Format/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyErr_NewException/basic/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyErr_NoMemory/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyErr_PrintEx/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyErr_SetFromErrno/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyErr_SetNone/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyErr_SetObject/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyErr_SetString/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyEval_CallMethod/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyEval_CallMethod/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyFloat_AsDouble/correct_PyFloatObject/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyFloat_AsDouble/correct_cast/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyFloat_FromDouble/simple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyGILState_Ensure/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyInt_AsLong/correct_PyIntObject/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyInt_AsLong/correct_cast/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyInt_FromLong/correct_large_int/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyInt_FromLong/correct_small_int/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyIter_Next/simple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_Append/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_Append/incorrect-loop/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_Append/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_Append/null-newitem/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_Append/ticket-19/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_Append/ticket-22/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_GetItem/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_SET_ITEM_macro/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_SET_ITEM_macro/correct_multiple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_SET_ITEM_macro/incorrect_multiple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_Size/known-size/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyList_Size/unknown-size/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyMapping_Size/basic/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyMem_Malloc/correct/alloc-and-free/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyMem_Malloc/correct/free-NULL/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyModule_AddObject/incorrect-with-cast/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_CallFunction/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_CallFunctionObjArgs/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_CallFunctionObjArgs/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_CallMethod/correct-code-N/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_CallMethod/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_CallMethodObjArgs/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_CallMethodObjArgs/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_CallObject/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_GenericGetAttr/basic/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_GenericSetAttr/basic/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_GetAttr/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_GetAttr/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_GetAttrString/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_GetAttrString/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_GetItem/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_GetItem/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_HasAttrString/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_HasAttrString/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_IsTrue/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyObject_SetAttrString/ignored-lhs/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PySequence_SetItem/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PySequence_SetItem/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PySequence_Size/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PySequence_Size/null/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_AsString/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_AsString/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_AsString/unknown/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_Concat/basic/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_Concat/leak-of-rhs/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_Concat/null-lhs/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_Concat/null-rhs/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_ConcatAndDel/basic/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_ConcatAndDel/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_ConcatAndDel/null-lhs/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_ConcatAndDel/null-rhs/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_FromStringAndSize/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyString_Size/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyStructSequence/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PySys_GetObject/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PySys_SetObject/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_GetItem/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_GetItem/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_New/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_Pack/incorrect-arg-count/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_SET_ITEM_macro/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_SET_ITEM_macro/correct_multiple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_SET_ITEM_macro/incorrect_multiple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_SetItem/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_SetItem/correct_multiple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_SetItem/incorrect_multiple/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_Size/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyTuple_Size/ticket-24/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyType_IsSubtype/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyUnicode_AsUTF8String/basic/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyWeakref_GetObject/NULL/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyWeakref_GetObject/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/PyWeakref_GetObject/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/Py_BuildValue/Py_TYPE/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/Py_BuildValue/correct-code-N/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/Py_BuildValue/correct-code-O/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/Py_BuildValue/correct-code-s/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/Py_BuildValue/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/Py_FatalError/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/Py_Finalize/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/SWIG_Python_ErrorType/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/SWIG_Python_SetErrorMsg/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/_PyObject_New/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/__builtin_expect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/returns-borrowed-ref/correct-marking/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/returns-borrowed-ref/correct-usage/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/returns-borrowed-ref/incorrect-marking/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/returns-borrowed-ref/incorrect-usage/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/sets-exception-on-nonzero-return/correct-marking/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/sets-exception-on-nonzero-return/correct-usage/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/sets-exception-on-nonzero-return/incorrect-marking/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/sets-exception/correct-marking/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/sets-exception/correct-usage/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/sets-exception/incorrect-marking/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/steals-reference-to-arg/correct-marking/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/steals-reference-to-arg/correct-usage/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/steals-reference-to-arg/incorrect-marking/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/attributes/steals-reference-to-arg/incorrect-usage/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/combinatorial-explosion-with-error/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/combinatorial-explosion/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/correct_decref/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/correct_object_ctor/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/correct_py_none/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/cplusplus/destructor/input.cc
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/cplusplus/empty-function/input.cc
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/cplusplus/method/input.cc
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/cplusplus/reference/input.cc
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/cplusplus/simple/input.cc
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/cplusplus/this/input.cc
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/fold_conditional/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/function-that-exits/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/getter/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/handle_null_error/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/incorrect_py_none/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/json/basic/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/loop_n_times/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/loops/complex-loop-conditional-1/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/loops/complex-loop-conditional-2/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/macros/Py_XDECREF/crash/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/missing_decref/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/module_handling/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/multiple-returns/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/not_setting_exception/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/object_from_callback/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/object_leak/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/passing_dead_object/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/returning_dead_object/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/storage_regions/static/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/storage_regions/static/incorrect/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/subclass/detection/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/subclass/handling/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/subclass/incorrect-subclass-ptr/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/subclass/opaque-struct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/ticket-20/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/too_many_increfs/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/tp_iternext/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/tp_iternext/partial-type-object/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/uninitialized_data/comparison/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/uninitialized_data/function_arg/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/unrecognized_function/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/unrecognized_function2/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/unrecognized_function3/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/unrecognized_function4/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/use_after_dealloc/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/refcounts/without-python-headers/input.c
Examining data/gcc-python-plugin-0.17/tests/cpychecker/unknown-function/input.c
Examining data/gcc-python-plugin-0.17/tests/examples/attributes-with-macros/input.c
Examining data/gcc-python-plugin-0.17/tests/examples/attributes/input.c
Examining data/gcc-python-plugin-0.17/tests/examples/c/struct/input.c
Examining data/gcc-python-plugin-0.17/tests/examples/cplusplus/classes/input.cc
Examining data/gcc-python-plugin-0.17/tests/examples/cplusplus/methods/input.cc
Examining data/gcc-python-plugin-0.17/tests/examples/find-global-state/input.c
Examining data/gcc-python-plugin-0.17/tests/examples/hello-world/input.c
Examining data/gcc-python-plugin-0.17/tests/examples/lto/input-f.c
Examining data/gcc-python-plugin-0.17/tests/examples/lto/input-g.c
Examining data/gcc-python-plugin-0.17/tests/examples/lto/input-main.c
Examining data/gcc-python-plugin-0.17/tests/examples/lto/test.h
Examining data/gcc-python-plugin-0.17/tests/examples/spelling-checker/input.c
Examining data/gcc-python-plugin-0.17/tests/gccutils/graph/input.c
Examining data/gcc-python-plugin-0.17/tests/gccutils/topological-sort/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/array-type/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/arrays/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/attributes/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/callback-FINISH_DECL/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/callbacks/PLUGIN_FINISH/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/callbacks/args/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/callbacks/exception/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/callbacks/refs/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/callgraph/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/compound-locations/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/constants/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/diagnostics/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/dumpfiles/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/enum-type/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/expressions/get_symbol/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/function-types/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/functions/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/gc/_force_garbage_collection/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/gc/_gc_selftest/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/gc/segfault-on-instance-of-pass-subclass/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/gimple-asm/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/gimple-cond/explicit-comparison/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/gimple-cond/implicit-comparison/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/gimple-walk-tree/dump-all/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/gimple-walk-tree/exceptions/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/gimple-walk-tree/find-one/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/identifiers/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/initializers/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/language-specific-errors/fullname/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/macros/correct/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/macros/too-early/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/namespace/input.cc
Examining data/gcc-python-plugin-0.17/tests/plugin/new-passes/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/options/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/parameters/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/rich-location/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/rtl/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/switch/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/syntax-error/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/sys/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/translation-units/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/type-attributes/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/types/input.c
Examining data/gcc-python-plugin-0.17/tests/plugin/version/input.c
Examining data/gcc-python-plugin-0.17/gcc-python-pretty-printer.c
Examining data/gcc-python-plugin-0.17/gcc-python.h
Examining data/gcc-python-plugin-0.17/gcc-python-wrapper.c
FINAL RESULTS:
data/gcc-python-plugin-0.17/demo.c:103:32: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
item = PyLong_FromLong(random());
data/gcc-python-plugin-0.17/libcpychecker_html/test/example1/bug.c:17:32: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
item = PyLong_FromLong(random());
data/gcc-python-plugin-0.17/gcc-python-rtl.c:164:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048]; /* FIXME */
data/gcc-python-plugin-0.17/gcc-python-tree.c:713:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[WIDE_INT_PRINT_BUFFER_SIZE];
data/gcc-python-plugin-0.17/gcc-python-tree.c:733:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[WIDE_INT_PRINT_BUFFER_SIZE];
data/gcc-python-plugin-0.17/gcc-python-tree.c:736:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/gcc-python-plugin-0.17/gcc-python-tree.c:751:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[60];
data/gcc-python-plugin-0.17/gcc-python-tree.c:781:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[60];
data/gcc-python-plugin-0.17/gcc-python-wrappers.h:472:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024]; /* FIXME */
data/gcc-python-plugin-0.17/gcc-python.c:646:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(PyGccString_AsString(script_name), "r");
data/gcc-python-plugin-0.17/gcc-python.c:934:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512]; /* FIXME */
data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/fully-checked-on-stack/input.c:32:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char array[12] = {2, 2, 2, 2, 8, 1, 8, 1, 8, 2, 8, 2};
data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/fully-checked/input.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char array[12] = {2, 2, 2, 2, 8, 1, 8, 1, 8, 2, 8, 2};
data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/implicitly-correct/input.c:29:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char array[12] = {2, 2, 2, 2, 8, 1, 8, 1, 8, 2, 8, 2};
data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/off-by-one/input.c:29:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char array[12] = {2, 2, 2, 2, 8, 1, 8, 1, 8, 2, 8, 2};
data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/unchecked/input.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char array[12] = {2, 2, 2, 2, 8, 1, 8, 1, 8, 2, 8, 2};
data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/array-range/upper-checked/input.c:27:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char array[12];
data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/assignment-from-string-const/input.c:24:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256]="";
data/gcc-python-plugin-0.17/tests/cpychecker/fileptr-missing-error-check/input.c:25:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen(filename, "r");
data/gcc-python-plugin-0.17/gcc-python-pretty-printer.c:94:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(ppobj->buf);
data/gcc-python-plugin-0.17/gcc-python-wrapper.c:391:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tree_str = build_string(strlen(MY_TEST_STRING), MY_TEST_STRING);
data/gcc-python-plugin-0.17/gcc-python.c:353:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(PyGccString_AsString(str_obj)),
data/gcc-python-plugin-0.17/gcc-python.c:952:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = (char*)PyMem_Malloc(strlen(str) + 1);
data/gcc-python-plugin-0.17/tests/cpychecker/absinterp/assignment-from-string-const/input.c:25:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, src, 256);
ANALYSIS SUMMARY:
Hits = 24
Lines analyzed = 30960 in approximately 0.86 seconds (35965 lines/second)
Physical Source Lines of Code (SLOC) = 11702
Hits@level = [0] 97 [1] 5 [2] 17 [3] 2 [4] 0 [5] 0
Hits@level+ = [0+] 121 [1+] 24 [2+] 19 [3+] 2 [4+] 0 [5+] 0
Hits/KSLOC@level+ = [0+] 10.3401 [1+] 2.05093 [2+] 1.62365 [3+] 0.170911 [4+] 0 [5+] 0
Symlinks skipped = 1 (--allowlink overrides but see doc for security issue)
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.