stdin

Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/gstreamer-editing-services1.0-1.18.1/docs/design/gstencodebin.h
Examining data/gstreamer-editing-services1.0-1.18.1/docs/design/gstprofile.h
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/assets.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/concatenate.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/ges-ui.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/gessrc.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/multifilesrc.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/overlays.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/play_timeline_with_one_clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/simple1.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/test1.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/test2.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/test3.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/test4.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/text_properties.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/thumbnails.c
Examining data/gstreamer-editing-services1.0-1.18.1/examples/c/transition.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-asset.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-asset.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-test-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-test-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-track.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-track.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-transition.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-transition.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-uri-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-audio-uri-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-auto-transition.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-auto-transition.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-base-effect-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-base-effect-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-base-effect.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-base-effect.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-base-transition-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-base-transition-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-base-xml-formatter.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-base-xml-formatter.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-clip-asset.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-clip-asset.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-command-line-formatter.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-command-line-formatter.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-container.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-container.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-effect-asset.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-effect-asset.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-effect-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-effect-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-effect.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-effect.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-enums.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-enums.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-extractable.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-extractable.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-formatter.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-formatter.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-gerror.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-group.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-group.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-image-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-image-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-internal.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-layer.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-layer.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-marker-list.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-marker-list.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-meta-container.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-meta-container.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-multi-file-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-multi-file-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-operation-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-operation-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-operation.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-operation.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-overlay-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-overlay-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-pipeline.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-pipeline.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-pitivi-formatter.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-pitivi-formatter.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-prelude.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-project.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-project.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-screenshot.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-screenshot.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-smart-adder.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-smart-adder.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-smart-video-mixer.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-smart-video-mixer.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-source-clip-asset.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-source-clip-asset.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-source-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-source-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-structure-parser.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-structure-parser.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-structured-interface.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-structured-interface.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-test-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-test-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-text-overlay-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-text-overlay-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-text-overlay.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-text-overlay.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-time-overlay-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-time-overlay-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-timeline-element.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-timeline-element.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-timeline-tree.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-timeline-tree.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-timeline.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-timeline.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-title-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-title-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-title-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-title-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-track-element-asset.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-track-element-asset.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-track-element-deprecated.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-track-element.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-track-element.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-track.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-track.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-transition-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-transition-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-transition.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-transition.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-types.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-uri-asset.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-uri-asset.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-uri-clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-uri-clip.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-uri-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-uri-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-utils.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-utils.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-validate.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-test-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-test-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-track.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-track.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-transition.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-transition.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-uri-source.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-video-uri-source.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-xml-formatter.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges-xml-formatter.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/ges.h
Examining data/gstreamer-editing-services1.0-1.18.1/ges/gstframepositioner.c
Examining data/gstreamer-editing-services1.0-1.18.1/ges/gstframepositioner.h
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/ges/gesbasebin.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/ges/gesbasebin.h
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/ges/gesdemux.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/ges/gesplugin.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/ges/gessrc.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/gstnle.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nle.h
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nlecomposition.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nlecomposition.h
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nleghostpad.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nleghostpad.h
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nleobject.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nleobject.h
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nleoperation.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nleoperation.h
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nlesource.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nlesource.h
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nletypes.h
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nleurisource.c
Examining data/gstreamer-editing-services1.0-1.18.1/plugins/nle/nleurisource.h
Examining data/gstreamer-editing-services1.0-1.18.1/tests/benchmarks/timeline.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/asset.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/backgroundsource.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/basic.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/clip.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/effects.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/group.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/layer.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/markerlist.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/mixers.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/negative.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/overlays.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/project.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/tempochange.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/test-utils.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/test-utils.h
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/timelineedition.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/titles.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/track.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/transition.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/uriclip.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/nle/common.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/nle/common.h
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/nle/complex.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/nle/nlecomposition.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/nle/nleoperation.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/nle/nlesource.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/nle/seek.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/nle/simple.c
Examining data/gstreamer-editing-services1.0-1.18.1/tests/check/nle/tempochange.c
Examining data/gstreamer-editing-services1.0-1.18.1/tools/ges-launch.c
Examining data/gstreamer-editing-services1.0-1.18.1/tools/ges-launcher.c
Examining data/gstreamer-editing-services1.0-1.18.1/tools/ges-launcher.h
Examining data/gstreamer-editing-services1.0-1.18.1/tools/ges-validate.c
Examining data/gstreamer-editing-services1.0-1.18.1/tools/ges-validate.h
Examining data/gstreamer-editing-services1.0-1.18.1/tools/utils.c
Examining data/gstreamer-editing-services1.0-1.18.1/tools/utils.h

FINAL RESULTS:

data/gstreamer-editing-services1.0-1.18.1/ges/ges-validate.c:996:47:  [3] (buffer) g_get_tmp_dir:
  This function is synonymous with 'getenv("TMP")';it returns untrustable
  input if the environment can beset by an attacker. It can have any content
  and length, and the same variable can be set more than once (CWE-807,
  CWE-20). Check environment variables carefully before using them.
  gchar *tmpfile = g_strdup_printf ("%s%s%s", g_get_tmp_dir (),
data/gstreamer-editing-services1.0-1.18.1/tests/check/ges/test-utils.c:254:32:  [3] (buffer) g_get_tmp_dir:
  This function is synonymous with 'getenv("TMP")';it returns untrustable
  input if the environment can beset by an attacker. It can have any content
  and length, and the same variable can be set more than once (CWE-807,
  CWE-20). Check environment variables carefully before using them.
  location = g_build_filename (g_get_tmp_dir (), filename, NULL);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-multi-file-source.c:159:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
      uri_data->end = atoi (colon + 1);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-multi-file-source.c:160:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
      uri_data->start = atoi (g_strdup_printf ("%.*s", charpos, indices));
data/gstreamer-editing-services1.0-1.18.1/ges/ges-pitivi-formatter.c:569:40:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
              (gchar *) tmp_key->data, atoi (val[1]), NULL);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-validate.c:1009:26:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
    g_file_set_contents (tmpfile, content, -1, &error);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-validate.c:1013:32:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
    uri = gst_filename_to_uri (tmpfile, &error);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-validate.c:1045:11:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
  g_free (tmpfile);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-xml-formatter.c:968:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (subproject_content, &xml[start], end - start);
data/gstreamer-editing-services1.0-1.18.1/examples/c/ges-ui.c:526:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
  strncpy (buf, &str[6], sizeof (buf) - 1);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-command-line-formatter.c:596:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          || (strlen (name) == 1 && *name == options[i].short_name)) {
data/gstreamer-editing-services1.0-1.18.1/ges/ges-formatter.c:191:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  len = strlen (uri);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-multi-file-source.c:144:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  const int prefix_size = strlen (GES_MULTI_FILE_URI_PREFIX);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-structured-interface.c:110:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen (struct_name) > 1 ? "--" : "-",
data/gstreamer-editing-services1.0-1.18.1/ges/ges-timeline-element.c:659:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  l = strlen (lowcase_type);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-timeline-element.c:666:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    l = strlen (type_name);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-timeline-element.c:685:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          g_ascii_strtoull (&wanted_name[strlen (lowcase_type)], NULL, 10);
data/gstreamer-editing-services1.0-1.18.1/ges/ges-xml-formatter.c:690:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (strlen (pair)) {
data/gstreamer-editing-services1.0-1.18.1/tools/utils.c:74:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      g_malloc (sizeof (gchar) * (strlen (arg) + num_escape + 3));
data/gstreamer-editing-services1.0-1.18.1/tools/utils.c:250:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  len = strlen (uri);

ANALYSIS SUMMARY:

Hits = 20
Lines analyzed = 92867 in approximately 2.13 seconds (43614 lines/second)
Physical Source Lines of Code (SLOC) = 59298
Hits@level = [0]   2 [1]  11 [2]   7 [3]   2 [4]   0 [5]   0
Hits@level+ = [0+]  22 [1+]  20 [2+]   9 [3+]   2 [4+]   0 [5+]   0
Hits/KSLOC@level+ = [0+] 0.371007 [1+] 0.33728 [2+] 0.151776 [3+] 0.033728 [4+]   0 [5+]   0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.