Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/gwenview-20.08.3/part/gvpart.h
Examining data/gwenview-20.08.3/part/gvpart.cpp
Examining data/gwenview-20.08.3/part/gvbrowserextension.cpp
Examining data/gwenview-20.08.3/part/gvbrowserextension.h
Examining data/gwenview-20.08.3/tests/auto/sorteddirmodeltest.cpp
Examining data/gwenview-20.08.3/tests/auto/recursivedirmodeltest.h
Examining data/gwenview-20.08.3/tests/auto/imagemetainfomodeltest.h
Examining data/gwenview-20.08.3/tests/auto/recursivedirmodeltest.cpp
Examining data/gwenview-20.08.3/tests/auto/slidecontainerautotest.h
Examining data/gwenview-20.08.3/tests/auto/historymodeltest.h
Examining data/gwenview-20.08.3/tests/auto/semanticinfobackendtest.h
Examining data/gwenview-20.08.3/tests/auto/jpegcontenttest.cpp
Examining data/gwenview-20.08.3/tests/auto/importertest.h
Examining data/gwenview-20.08.3/tests/auto/urlutilstest.h
Examining data/gwenview-20.08.3/tests/auto/cmsprofiletest.cpp
Examining data/gwenview-20.08.3/tests/auto/transformimageoperationtest.cpp
Examining data/gwenview-20.08.3/tests/auto/semanticinfobackendtest.cpp
Examining data/gwenview-20.08.3/tests/auto/jpegcontenttest.h
Examining data/gwenview-20.08.3/tests/auto/imagescalertest.h
Examining data/gwenview-20.08.3/tests/auto/cmsprofiletest.h
Examining data/gwenview-20.08.3/tests/auto/urlutilstest.cpp
Examining data/gwenview-20.08.3/tests/auto/sorteddirmodeltest.h
Examining data/gwenview-20.08.3/tests/auto/transformimageoperationtest.h
Examining data/gwenview-20.08.3/tests/auto/imagescalertest.cpp
Examining data/gwenview-20.08.3/tests/auto/thumbnailprovidertest.cpp
Examining data/gwenview-20.08.3/tests/auto/placetreemodeltest.h
Examining data/gwenview-20.08.3/tests/auto/timeutilstest.h
Examining data/gwenview-20.08.3/tests/auto/placetreemodeltest.cpp
Examining data/gwenview-20.08.3/tests/auto/slidecontainerautotest.cpp
Examining data/gwenview-20.08.3/tests/auto/imagemetainfomodeltest.cpp
Examining data/gwenview-20.08.3/tests/auto/contextmanagertest.cpp
Examining data/gwenview-20.08.3/tests/auto/historymodeltest.cpp
Examining data/gwenview-20.08.3/tests/auto/contextmanagertest.h
Examining data/gwenview-20.08.3/tests/auto/testutils.cpp
Examining data/gwenview-20.08.3/tests/auto/thumbnailprovidertest.h
Examining data/gwenview-20.08.3/tests/auto/documenttest.cpp
Examining data/gwenview-20.08.3/tests/auto/importertest.cpp
Examining data/gwenview-20.08.3/tests/auto/timeutilstest.cpp
Examining data/gwenview-20.08.3/tests/auto/testutils.h
Examining data/gwenview-20.08.3/tests/auto/documenttest.h
Examining data/gwenview-20.08.3/tests/manual/slidecontainertest.cpp
Examining data/gwenview-20.08.3/tests/manual/thumbnailgen.cpp
Examining data/gwenview-20.08.3/tests/manual/imageloadbench.cpp
Examining data/gwenview-20.08.3/importer/fileutils.h
Examining data/gwenview-20.08.3/importer/progresspage.cpp
Examining data/gwenview-20.08.3/importer/importerconfigdialog.cpp
Examining data/gwenview-20.08.3/importer/documentdirfinder.cpp
Examining data/gwenview-20.08.3/importer/serializedurlmap.cpp
Examining data/gwenview-20.08.3/importer/dialogpage.cpp
Examining data/gwenview-20.08.3/importer/dialogpage.h
Examining data/gwenview-20.08.3/importer/importer.cpp
Examining data/gwenview-20.08.3/importer/serializedurlmap.h
Examining data/gwenview-20.08.3/importer/main.cpp
Examining data/gwenview-20.08.3/importer/fileutils.cpp
Examining data/gwenview-20.08.3/importer/importdialog.cpp
Examining data/gwenview-20.08.3/importer/importdialog.h
Examining data/gwenview-20.08.3/importer/progresspage.h
Examining data/gwenview-20.08.3/importer/filenameformater.cpp
Examining data/gwenview-20.08.3/importer/importerconfigdialog.h
Examining data/gwenview-20.08.3/importer/importer.h
Examining data/gwenview-20.08.3/importer/documentdirfinder.h
Examining data/gwenview-20.08.3/importer/thumbnailpage.h
Examining data/gwenview-20.08.3/importer/thumbnailpage.cpp
Examining data/gwenview-20.08.3/importer/filenameformater.h
Examining data/gwenview-20.08.3/lib/contextmanager.cpp
Examining data/gwenview-20.08.3/lib/documentonlyproxymodel.cpp
Examining data/gwenview-20.08.3/lib/transformimageoperation.cpp
Examining data/gwenview-20.08.3/lib/orientation.h
Examining data/gwenview-20.08.3/lib/exiv2imageloader.cpp
Examining data/gwenview-20.08.3/lib/thumbnailgroup.h
Examining data/gwenview-20.08.3/lib/mousewheelbehavior.h
Examining data/gwenview-20.08.3/lib/graphicswidgetfloater.cpp
Examining data/gwenview-20.08.3/lib/disabledactionshortcutmonitor.cpp
Examining data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailprovider.h
Examining data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailwriter.h
Examining data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailgenerator.h
Examining data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailwriter.cpp
Examining data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailprovider.cpp
Examining data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailgenerator.cpp
Examining data/gwenview-20.08.3/lib/imagescaler.cpp
Examining data/gwenview-20.08.3/lib/historymodel.cpp
Examining data/gwenview-20.08.3/lib/abstractimageoperation.h
Examining data/gwenview-20.08.3/lib/mimetypeutils.h
Examining data/gwenview-20.08.3/lib/libjpeg-80/transupp.h
Examining data/gwenview-20.08.3/lib/libjpeg-80/jinclude.h
Examining data/gwenview-20.08.3/lib/libjpeg-80/transupp.c
Examining data/gwenview-20.08.3/lib/libjpeg-80/jpegint.h
Examining data/gwenview-20.08.3/lib/redeyereduction/redeyereductiontool.cpp
Examining data/gwenview-20.08.3/lib/redeyereduction/redeyereductionimageoperation.cpp
Examining data/gwenview-20.08.3/lib/redeyereduction/redeyereductionimageoperation.h
Examining data/gwenview-20.08.3/lib/redeyereduction/redeyereductiontool.h
Examining data/gwenview-20.08.3/lib/exiv2imageloader.h
Examining data/gwenview-20.08.3/lib/slideshow.h
Examining data/gwenview-20.08.3/lib/resize/resizeimagedialog.cpp
Examining data/gwenview-20.08.3/lib/resize/resizeimageoperation.cpp
Examining data/gwenview-20.08.3/lib/resize/resizeimageoperation.h
Examining data/gwenview-20.08.3/lib/resize/resizeimagedialog.h
Examining data/gwenview-20.08.3/lib/about.cpp
Examining data/gwenview-20.08.3/lib/widgetfloater.cpp
Examining data/gwenview-20.08.3/lib/dialogguard.h
Examining data/gwenview-20.08.3/lib/urlutils.cpp
Examining data/gwenview-20.08.3/lib/recursivedirmodel.cpp
Examining data/gwenview-20.08.3/lib/renderingintent.h
Examining data/gwenview-20.08.3/lib/imagescaler.h
Examining data/gwenview-20.08.3/lib/stylesheetutils.cpp
Examining data/gwenview-20.08.3/lib/kindproxymodel.cpp
Examining data/gwenview-20.08.3/lib/fullscreenbar.h
Examining data/gwenview-20.08.3/lib/graphicswidgetfloater.h
Examining data/gwenview-20.08.3/lib/binder.cpp
Examining data/gwenview-20.08.3/lib/historymodel.h
Examining data/gwenview-20.08.3/lib/thumbnailactions.h
Examining data/gwenview-20.08.3/lib/semanticinfo/sorteddirmodel.cpp
Examining data/gwenview-20.08.3/lib/semanticinfo/baloosemanticinfobackend.cpp
Examining data/gwenview-20.08.3/lib/semanticinfo/fakesemanticinfobackend.cpp
Examining data/gwenview-20.08.3/lib/semanticinfo/tagwidget.h
Examining data/gwenview-20.08.3/lib/semanticinfo/semanticinfodirmodel.cpp
Examining data/gwenview-20.08.3/lib/semanticinfo/tagitemdelegate.h
Examining data/gwenview-20.08.3/lib/semanticinfo/abstractsemanticinfobackend.cpp
Examining data/gwenview-20.08.3/lib/semanticinfo/fakesemanticinfobackend.h
Examining data/gwenview-20.08.3/lib/semanticinfo/abstractsemanticinfobackend.h
Examining data/gwenview-20.08.3/lib/semanticinfo/sorteddirmodel.h
Examining data/gwenview-20.08.3/lib/semanticinfo/tagwidget.cpp
Examining data/gwenview-20.08.3/lib/semanticinfo/tagmodel.h
Examining data/gwenview-20.08.3/lib/semanticinfo/tagmodel.cpp
Examining data/gwenview-20.08.3/lib/semanticinfo/baloosemanticinfobackend.h
Examining data/gwenview-20.08.3/lib/semanticinfo/tagitemdelegate.cpp
Examining data/gwenview-20.08.3/lib/semanticinfo/semanticinfodirmodel.h
Examining data/gwenview-20.08.3/lib/kindproxymodel.h
Examining data/gwenview-20.08.3/lib/stylesheetutils.h
Examining data/gwenview-20.08.3/lib/cms/iccjpeg.c
Examining data/gwenview-20.08.3/lib/cms/iccjpeg.h
Examining data/gwenview-20.08.3/lib/cms/cmsprofile_png.cpp
Examining data/gwenview-20.08.3/lib/cms/cmsprofile_png.h
Examining data/gwenview-20.08.3/lib/cms/cmsprofile.h
Examining data/gwenview-20.08.3/lib/cms/cmsprofile.cpp
Examining data/gwenview-20.08.3/lib/recentfilesmodel.h
Examining data/gwenview-20.08.3/lib/contextmanager.h
Examining data/gwenview-20.08.3/lib/invisiblebuttongroup.cpp
Examining data/gwenview-20.08.3/lib/mimetypeutils.cpp
Examining data/gwenview-20.08.3/lib/datewidget.h
Examining data/gwenview-20.08.3/lib/scrollerutils.h
Examining data/gwenview-20.08.3/lib/archiveutils.h
Examining data/gwenview-20.08.3/lib/timeutils.cpp
Examining data/gwenview-20.08.3/lib/documentonlyproxymodel.h
Examining data/gwenview-20.08.3/lib/slideshow.cpp
Examining data/gwenview-20.08.3/lib/jpegcontent.cpp
Examining data/gwenview-20.08.3/lib/preferredimagemetainfomodel.cpp
Examining data/gwenview-20.08.3/lib/timeutils.h
Examining data/gwenview-20.08.3/lib/mpris2/mprismediaplayer2player.cpp
Examining data/gwenview-20.08.3/lib/mpris2/mprismediaplayer2.cpp
Examining data/gwenview-20.08.3/lib/mpris2/mpris2service.cpp
Examining data/gwenview-20.08.3/lib/mpris2/dbusabstractadaptor.cpp
Examining data/gwenview-20.08.3/lib/mpris2/lockscreenwatcher.cpp
Examining data/gwenview-20.08.3/lib/mpris2/mprismediaplayer2.h
Examining data/gwenview-20.08.3/lib/mpris2/lockscreenwatcher.h
Examining data/gwenview-20.08.3/lib/mpris2/mpris2service.h
Examining data/gwenview-20.08.3/lib/mpris2/dbusabstractadaptor.h
Examining data/gwenview-20.08.3/lib/mpris2/mprismediaplayer2player.h
Examining data/gwenview-20.08.3/lib/abstractimageoperation.cpp
Examining data/gwenview-20.08.3/lib/mimetypeutils_p.h
Examining data/gwenview-20.08.3/lib/recursivedirmodel.h
Examining data/gwenview-20.08.3/lib/zoomslider.h
Examining data/gwenview-20.08.3/lib/zoommode.h
Examining data/gwenview-20.08.3/lib/about.h
Examining data/gwenview-20.08.3/lib/flowlayout.h
Examining data/gwenview-20.08.3/lib/statusbartoolbutton.h
Examining data/gwenview-20.08.3/lib/fullscreenbar.cpp
Examining data/gwenview-20.08.3/lib/imagemetainfomodel.cpp
Examining data/gwenview-20.08.3/lib/flowlayout.cpp
Examining data/gwenview-20.08.3/lib/jpegerrormanager.h
Examining data/gwenview-20.08.3/lib/signalblocker.h
Examining data/gwenview-20.08.3/lib/imageutils.h
Examining data/gwenview-20.08.3/lib/libjpeg-90/transupp.h
Examining data/gwenview-20.08.3/lib/libjpeg-90/jinclude.h
Examining data/gwenview-20.08.3/lib/libjpeg-90/transupp.c
Examining data/gwenview-20.08.3/lib/libjpeg-90/jpegint.h
Examining data/gwenview-20.08.3/lib/statusbartoolbutton.cpp
Examining data/gwenview-20.08.3/lib/jpegcontent.h
Examining data/gwenview-20.08.3/lib/ramp.h
Examining data/gwenview-20.08.3/lib/zoomwidget.cpp
Examining data/gwenview-20.08.3/lib/print/printhelper.cpp
Examining data/gwenview-20.08.3/lib/print/printhelper.h
Examining data/gwenview-20.08.3/lib/print/printoptionspage.cpp
Examining data/gwenview-20.08.3/lib/print/printoptionspage.h
Examining data/gwenview-20.08.3/lib/recentfilesmodel.cpp
Examining data/gwenview-20.08.3/lib/archiveutils.cpp
Examining data/gwenview-20.08.3/lib/transformimageoperation.h
Examining data/gwenview-20.08.3/lib/placetreemodel.h
Examining data/gwenview-20.08.3/lib/invisiblebuttongroup.h
Examining data/gwenview-20.08.3/lib/shadowfilter.cpp
Examining data/gwenview-20.08.3/lib/imageformats/fitshandler.h
Examining data/gwenview-20.08.3/lib/imageformats/fitsplugin.cpp
Examining data/gwenview-20.08.3/lib/imageformats/fitsplugin.h
Examining data/gwenview-20.08.3/lib/imageformats/fitshandler.cpp
Examining data/gwenview-20.08.3/lib/imageformats/fitsformat/fitsdata.h
Examining data/gwenview-20.08.3/lib/imageformats/fitsformat/fitsdata.cpp
Examining data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.c
Examining data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.h
Examining data/gwenview-20.08.3/lib/memoryutils.h
Examining data/gwenview-20.08.3/lib/hud/hudcountdown.h
Examining data/gwenview-20.08.3/lib/hud/hudwidget.cpp
Examining data/gwenview-20.08.3/lib/hud/hudmessagebubble.cpp
Examining data/gwenview-20.08.3/lib/hud/hudmessagebubble.h
Examining data/gwenview-20.08.3/lib/hud/hudbutton.h
Examining data/gwenview-20.08.3/lib/hud/hudbutton.cpp
Examining data/gwenview-20.08.3/lib/hud/hudlabel.h
Examining data/gwenview-20.08.3/lib/hud/hudcountdown.cpp
Examining data/gwenview-20.08.3/lib/hud/hudslider.cpp
Examining data/gwenview-20.08.3/lib/hud/hudslider.h
Examining data/gwenview-20.08.3/lib/hud/hudtheme.h
Examining data/gwenview-20.08.3/lib/hud/hudwidget.h
Examining data/gwenview-20.08.3/lib/hud/hudtheme.cpp
Examining data/gwenview-20.08.3/lib/hud/hudbuttonbox.h
Examining data/gwenview-20.08.3/lib/hud/hudbuttonbox.cpp
Examining data/gwenview-20.08.3/lib/hud/hudlabel.cpp
Examining data/gwenview-20.08.3/lib/document/jpegdocumentloadedimpl.h
Examining data/gwenview-20.08.3/lib/document/document.cpp
Examining data/gwenview-20.08.3/lib/document/abstractdocumentimpl.h
Examining data/gwenview-20.08.3/lib/document/document_p.h
Examining data/gwenview-20.08.3/lib/document/documentjob.cpp
Examining data/gwenview-20.08.3/lib/document/documentfactory.h
Examining data/gwenview-20.08.3/lib/document/loadingdocumentimpl.cpp
Examining data/gwenview-20.08.3/lib/document/loadingjob.cpp
Examining data/gwenview-20.08.3/lib/document/documentjob.h
Examining data/gwenview-20.08.3/lib/document/animateddocumentloadedimpl.h
Examining data/gwenview-20.08.3/lib/document/videodocumentloadedimpl.cpp
Examining data/gwenview-20.08.3/lib/document/emptydocumentimpl.h
Examining data/gwenview-20.08.3/lib/document/jpegdocumentloadedimpl.cpp
Examining data/gwenview-20.08.3/lib/document/loadingjob.h
Examining data/gwenview-20.08.3/lib/document/document.h
Examining data/gwenview-20.08.3/lib/document/animateddocumentloadedimpl.cpp
Examining data/gwenview-20.08.3/lib/document/savejob.cpp
Examining data/gwenview-20.08.3/lib/document/svgdocumentloadedimpl.cpp
Examining data/gwenview-20.08.3/lib/document/svgdocumentloadedimpl.h
Examining data/gwenview-20.08.3/lib/document/videodocumentloadedimpl.h
Examining data/gwenview-20.08.3/lib/document/documentloadedimpl.cpp
Examining data/gwenview-20.08.3/lib/document/savejob.h
Examining data/gwenview-20.08.3/lib/document/abstractdocumentimpl.cpp
Examining data/gwenview-20.08.3/lib/document/loadingdocumentimpl.h
Examining data/gwenview-20.08.3/lib/document/emptydocumentimpl.cpp
Examining data/gwenview-20.08.3/lib/document/abstractdocumenteditor.h
Examining data/gwenview-20.08.3/lib/document/documentfactory.cpp
Examining data/gwenview-20.08.3/lib/document/documentloadedimpl.h
Examining data/gwenview-20.08.3/lib/gvdebug.h
Examining data/gwenview-20.08.3/lib/placetreemodel.cpp
Examining data/gwenview-20.08.3/lib/widgetfloater.h
Examining data/gwenview-20.08.3/lib/imageutils.cpp
Examining data/gwenview-20.08.3/lib/urlutils.h
Examining data/gwenview-20.08.3/lib/crop/croptool.h
Examining data/gwenview-20.08.3/lib/crop/cropimageoperation.cpp
Examining data/gwenview-20.08.3/lib/crop/cropwidget.h
Examining data/gwenview-20.08.3/lib/crop/cropimageoperation.h
Examining data/gwenview-20.08.3/lib/crop/croptool.cpp
Examining data/gwenview-20.08.3/lib/crop/cropwidget.cpp
Examining data/gwenview-20.08.3/lib/shadowfilter.h
Examining data/gwenview-20.08.3/lib/zoomslider.cpp
Examining data/gwenview-20.08.3/lib/iodevicejpegsourcemanager.h
Examining data/gwenview-20.08.3/lib/datewidget.cpp
Examining data/gwenview-20.08.3/lib/zoomwidget.h
Examining data/gwenview-20.08.3/lib/paintutils.cpp
Examining data/gwenview-20.08.3/lib/imagemetainfomodel.h
Examining data/gwenview-20.08.3/lib/eventwatcher.cpp
Examining data/gwenview-20.08.3/lib/documentview/documentview.cpp
Examining data/gwenview-20.08.3/lib/documentview/abstractimageview.cpp
Examining data/gwenview-20.08.3/lib/documentview/documentviewsynchronizer.h
Examining data/gwenview-20.08.3/lib/documentview/svgviewadapter.h
Examining data/gwenview-20.08.3/lib/documentview/videoviewadapter.h
Examining data/gwenview-20.08.3/lib/documentview/svgviewadapter.cpp
Examining data/gwenview-20.08.3/lib/documentview/abstractrasterimageviewtool.h
Examining data/gwenview-20.08.3/lib/documentview/messageviewadapter.h
Examining data/gwenview-20.08.3/lib/documentview/videoviewadapter.cpp
Examining data/gwenview-20.08.3/lib/documentview/abstractdocumentviewadapter.cpp
Examining data/gwenview-20.08.3/lib/documentview/birdeyeview.h
Examining data/gwenview-20.08.3/lib/documentview/abstractrasterimageviewtool.cpp
Examining data/gwenview-20.08.3/lib/documentview/abstractdocumentviewadapter.h
Examining data/gwenview-20.08.3/lib/documentview/loadingindicator.cpp
Examining data/gwenview-20.08.3/lib/documentview/birdeyeview.cpp
Examining data/gwenview-20.08.3/lib/documentview/documentviewsynchronizer.cpp
Examining data/gwenview-20.08.3/lib/documentview/documentviewcontroller.h
Examining data/gwenview-20.08.3/lib/documentview/rasterimageviewadapter.cpp
Examining data/gwenview-20.08.3/lib/documentview/documentviewcontainer.cpp
Examining data/gwenview-20.08.3/lib/documentview/documentviewcontroller.cpp
Examining data/gwenview-20.08.3/lib/documentview/rasterimageview.cpp
Examining data/gwenview-20.08.3/lib/documentview/rasterimageview.h
Examining data/gwenview-20.08.3/lib/documentview/loadingindicator.h
Examining data/gwenview-20.08.3/lib/documentview/documentviewcontainer.h
Examining data/gwenview-20.08.3/lib/documentview/abstractimageview.h
Examining data/gwenview-20.08.3/lib/documentview/messageviewadapter.cpp
Examining data/gwenview-20.08.3/lib/documentview/rasterimageviewadapter.h
Examining data/gwenview-20.08.3/lib/documentview/documentview.h
Examining data/gwenview-20.08.3/lib/slidecontainer.h
Examining data/gwenview-20.08.3/lib/paintutils.h
Examining data/gwenview-20.08.3/lib/preferredimagemetainfomodel.h
Examining data/gwenview-20.08.3/lib/eventwatcher.h
Examining data/gwenview-20.08.3/lib/slidecontainer.cpp
Examining data/gwenview-20.08.3/lib/iodevicejpegsourcemanager.cpp
Examining data/gwenview-20.08.3/lib/thumbnailview/abstractdocumentinfoprovider.h
Examining data/gwenview-20.08.3/lib/thumbnailview/thumbnailbarview.h
Examining data/gwenview-20.08.3/lib/thumbnailview/previewitemdelegate.cpp
Examining data/gwenview-20.08.3/lib/thumbnailview/abstractthumbnailviewhelper.h
Examining data/gwenview-20.08.3/lib/thumbnailview/tooltipwidget.cpp
Examining data/gwenview-20.08.3/lib/thumbnailview/thumbnailview.h
Examining data/gwenview-20.08.3/lib/thumbnailview/itemeditor.h
Examining data/gwenview-20.08.3/lib/thumbnailview/thumbnailslider.cpp
Examining data/gwenview-20.08.3/lib/thumbnailview/tooltipwidget.h
Examining data/gwenview-20.08.3/lib/thumbnailview/dragpixmapgenerator.h
Examining data/gwenview-20.08.3/lib/thumbnailview/dragpixmapgenerator.cpp
Examining data/gwenview-20.08.3/lib/thumbnailview/thumbnailslider.h
Examining data/gwenview-20.08.3/lib/thumbnailview/itemeditor.cpp
Examining data/gwenview-20.08.3/lib/thumbnailview/previewitemdelegate.h
Examining data/gwenview-20.08.3/lib/thumbnailview/abstractthumbnailviewhelper.cpp
Examining data/gwenview-20.08.3/lib/thumbnailview/thumbnailview.cpp
Examining data/gwenview-20.08.3/lib/thumbnailview/abstractdocumentinfoprovider.cpp
Examining data/gwenview-20.08.3/lib/thumbnailview/thumbnailbarview.cpp
Examining data/gwenview-20.08.3/lib/memoryutils.cpp
Examining data/gwenview-20.08.3/lib/touch/touch_helper.h
Examining data/gwenview-20.08.3/lib/touch/oneandtwofingerswipe.h
Examining data/gwenview-20.08.3/lib/touch/twofingerpan.cpp
Examining data/gwenview-20.08.3/lib/touch/twofingertap.h
Examining data/gwenview-20.08.3/lib/touch/doubletap.h
Examining data/gwenview-20.08.3/lib/touch/oneandtwofingerswipe.cpp
Examining data/gwenview-20.08.3/lib/touch/touch.h
Examining data/gwenview-20.08.3/lib/touch/touch.cpp
Examining data/gwenview-20.08.3/lib/touch/doubletap.cpp
Examining data/gwenview-20.08.3/lib/touch/tapholdandmoving.h
Examining data/gwenview-20.08.3/lib/touch/twofingerpan.h
Examining data/gwenview-20.08.3/lib/touch/twofingertap.cpp
Examining data/gwenview-20.08.3/lib/touch/touch_helper.cpp
Examining data/gwenview-20.08.3/lib/touch/tapholdandmoving.cpp
Examining data/gwenview-20.08.3/lib/disabledactionshortcutmonitor.h
Examining data/gwenview-20.08.3/lib/scrollerutils.cpp
Examining data/gwenview-20.08.3/lib/libjpeg-62/transupp.h
Examining data/gwenview-20.08.3/lib/libjpeg-62/jinclude.h
Examining data/gwenview-20.08.3/lib/libjpeg-62/transupp.c
Examining data/gwenview-20.08.3/lib/libjpeg-62/jpegint.h
Examining data/gwenview-20.08.3/lib/binder.h
Examining data/gwenview-20.08.3/lib/sorting.h
Examining data/gwenview-20.08.3/app/sidebar.cpp
Examining data/gwenview-20.08.3/app/fileopscontextmanageritem.cpp
Examining data/gwenview-20.08.3/app/configdialog.h
Examining data/gwenview-20.08.3/app/abstractcontextmanageritem.h
Examining data/gwenview-20.08.3/app/imagemetainfodialog.cpp
Examining data/gwenview-20.08.3/app/viewmainpage.h
Examining data/gwenview-20.08.3/app/folderviewcontextmanageritem.cpp
Examining data/gwenview-20.08.3/app/fullscreencontent.cpp
Examining data/gwenview-20.08.3/app/kipiuploadwidget.cpp
Examining data/gwenview-20.08.3/app/configdialog.cpp
Examining data/gwenview-20.08.3/app/startmainpage.h
Examining data/gwenview-20.08.3/app/mainwindow.h
Examining data/gwenview-20.08.3/app/thumbnailviewhelper.cpp
Examining data/gwenview-20.08.3/app/preloader.cpp
Examining data/gwenview-20.08.3/app/gvcore.h
Examining data/gwenview-20.08.3/app/documentinfoprovider.h
Examining data/gwenview-20.08.3/app/preloader.h
Examining data/gwenview-20.08.3/app/saveallhelper.cpp
Examining data/gwenview-20.08.3/app/imageopscontextmanageritem.h
Examining data/gwenview-20.08.3/app/kipiinterface.cpp
Examining data/gwenview-20.08.3/app/thumbnailviewhelper.h
Examining data/gwenview-20.08.3/app/filtercontroller.cpp
Examining data/gwenview-20.08.3/app/gvcore.cpp
Examining data/gwenview-20.08.3/app/semanticinfocontextmanageritem.cpp
Examining data/gwenview-20.08.3/app/semanticinfocontextmanageritem.h
Examining data/gwenview-20.08.3/app/mainwindow.cpp
Examining data/gwenview-20.08.3/app/abstractcontextmanageritem.cpp
Examining data/gwenview-20.08.3/app/filtercontroller.h
Examining data/gwenview-20.08.3/app/kipiimagecollectionselector.cpp
Examining data/gwenview-20.08.3/app/viewmainpage.cpp
Examining data/gwenview-20.08.3/app/kipiimagecollectionselector.h
Examining data/gwenview-20.08.3/app/renamedialog.cpp
Examining data/gwenview-20.08.3/app/imageopscontextmanageritem.cpp
Examining data/gwenview-20.08.3/app/fileoperations.h
Examining data/gwenview-20.08.3/app/main.cpp
Examining data/gwenview-20.08.3/app/fullscreencontent.h
Examining data/gwenview-20.08.3/app/saveallhelper.h
Examining data/gwenview-20.08.3/app/fileopscontextmanageritem.h
Examining data/gwenview-20.08.3/app/kipiexportaction.cpp
Examining data/gwenview-20.08.3/app/folderviewcontextmanageritem.h
Examining data/gwenview-20.08.3/app/infocontextmanageritem.cpp
Examining data/gwenview-20.08.3/app/renamedialog.h
Examining data/gwenview-20.08.3/app/imagemetainfodialog.h
Examining data/gwenview-20.08.3/app/sidebar.h
Examining data/gwenview-20.08.3/app/browsemainpage.cpp
Examining data/gwenview-20.08.3/app/savebar.cpp
Examining data/gwenview-20.08.3/app/documentinfoprovider.cpp
Examining data/gwenview-20.08.3/app/savebar.h
Examining data/gwenview-20.08.3/app/kipiuploadwidget.h
Examining data/gwenview-20.08.3/app/browsemainpage.h
Examining data/gwenview-20.08.3/app/kipiinterface.h
Examining data/gwenview-20.08.3/app/kipiexportaction.h
Examining data/gwenview-20.08.3/app/splitter.h
Examining data/gwenview-20.08.3/app/fileoperations.cpp
Examining data/gwenview-20.08.3/app/infocontextmanageritem.h
Examining data/gwenview-20.08.3/app/startmainpage.cpp
FINAL RESULTS:
data/gwenview-20.08.3/tests/auto/importertest.cpp:317:5: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod(QFile::encodeName(mTempDir->path()), 0555);
data/gwenview-20.08.3/lib/slideshow.cpp:94:29: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (GwenviewConfig::random()) {
data/gwenview-20.08.3/lib/slideshow.cpp:197:50: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
d->mRandomAction->setChecked(GwenviewConfig::random());
data/gwenview-20.08.3/lib/slideshow.cpp:227:25: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (GwenviewConfig::random()) {
data/gwenview-20.08.3/importer/fileutils.cpp:70:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file1->open(QIODevice::ReadOnly)) {
data/gwenview-20.08.3/importer/fileutils.cpp:94:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file2->open(QIODevice::ReadOnly)) {
data/gwenview-20.08.3/lib/cms/cmsprofile.cpp:89:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
buffer.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/lib/cms/cmsprofile.cpp:125:9: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buffer[1024];
data/gwenview-20.08.3/lib/cms/cmsprofile_png.cpp:63:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
buffer.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/lib/cms/iccjpeg.c:197:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char marker_present[MAX_SEQ_NO+1]; /* 1 if marker found */
data/gwenview-20.08.3/lib/document/animateddocumentloadedimpl.cpp:53:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
d->mMovieBuffer.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/lib/document/loadingdocumentimpl.cpp:195:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
buffer.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/lib/document/loadingdocumentimpl.cpp:296:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
buffer.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/lib/document/loadingdocumentimpl.cpp:391:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file.open(QIODevice::ReadOnly)) {
data/gwenview-20.08.3/lib/document/savejob.cpp:96:28: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
d->mTemporaryFile->open();
data/gwenview-20.08.3/lib/document/savejob.cpp:102:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!d->mSaveFile->open(QSaveFile::WriteOnly)) {
data/gwenview-20.08.3/lib/exiv2imageloader.cpp:88:46: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
d->mImage.reset(Exiv2::ImageFactory::open(filePathByteArray.constData()).release());
data/gwenview-20.08.3/lib/exiv2imageloader.cpp:100:46: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
d->mImage.reset(Exiv2::ImageFactory::open((unsigned char*)data.constData(), data.size()).release());
data/gwenview-20.08.3/lib/historymodel.cpp:67:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file.open()) {
data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.c:1828:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(brow[2][col], pix, 3 * sizeof *dst); /* [FD] */
data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.c:1855:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst + 3 * ((row - 2) * width + 2), brow[0] + 2, (width - 4) * 3 * sizeof *dst); /* [FD] */
data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.c:1859:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst + 3 * ((row - 2) * width + 2), brow[0] + 2, (width - 4) * 3 * sizeof *dst);
data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.c:1860:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst + 3 * ((row - 1) * width + 2), brow[1] + 2, (width - 4) * 3 * sizeof *dst);
data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.c:1973:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(brow[2][col], pix, 3 * sizeof *dst); /* [FD] */
data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.c:2000:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst + 3 * ((row - 2) * width + 2), brow[0] + 2, (width - 4) * 3 * sizeof *dst); /* [FD] */
data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.c:2004:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst + 3 * ((row - 2) * width + 2), brow[0] + 2, (width - 4) * 3 * sizeof *dst);
data/gwenview-20.08.3/lib/imageformats/fitsformat/bayer.c:2005:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst + 3 * ((row - 1) * width + 2), brow[1] + 2, (width - 4) * 3 * sizeof *dst);
data/gwenview-20.08.3/lib/imageformats/fitsformat/fitsdata.cpp:53:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char error_status[512];
data/gwenview-20.08.3/lib/imageformats/fitsformat/fitsdata.cpp:156:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[512];
data/gwenview-20.08.3/lib/imageformats/fitsformat/fitsdata.cpp:393:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bayerPattern[64];
data/gwenview-20.08.3/lib/imageformats/fitsformat/fitsdata.cpp:436:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[512];
data/gwenview-20.08.3/lib/imagemetainfomodel.cpp:349:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file.open(QIODevice::ReadOnly)) {
data/gwenview-20.08.3/lib/jpegcontent.cpp:167:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
buffer.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/lib/jpegcontent.cpp:223:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!d->mFile.open(QIODevice::ReadOnly)) {
data/gwenview-20.08.3/lib/jpegcontent.cpp:513:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
buffer.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/lib/jpegcontent.cpp:622:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
buffer.open(QIODevice::WriteOnly);
data/gwenview-20.08.3/lib/jpegcontent.cpp:651:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file.open(QIODevice::WriteOnly)) {
data/gwenview-20.08.3/lib/jpegcontent.cpp:678:38: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
image.reset(Exiv2::ImageFactory::open((unsigned char*)d->mRawData.data(), d->mRawData.size()).release());
data/gwenview-20.08.3/lib/jpegerrormanager.h:57:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[JMSG_LENGTH_MAX];
data/gwenview-20.08.3/lib/libjpeg-62/jinclude.h:61:33: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MEMCOPY(dest,src,size) bcopy((const void *)(src), (void *)(dest), (size_t)(size))
data/gwenview-20.08.3/lib/libjpeg-62/jinclude.h:67:33: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MEMCOPY(dest,src,size) memcpy((void *)(dest), (const void *)(src), (size_t)(size))
data/gwenview-20.08.3/lib/libjpeg-80/jinclude.h:61:33: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MEMCOPY(dest,src,size) bcopy((const void *)(src), (void *)(dest), (size_t)(size))
data/gwenview-20.08.3/lib/libjpeg-80/jinclude.h:67:33: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MEMCOPY(dest,src,size) memcpy((void *)(dest), (const void *)(src), (size_t)(size))
data/gwenview-20.08.3/lib/libjpeg-90/jinclude.h:62:32: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MEMCOPY(dest,src,size) bcopy((const void *)(src), (void *)(dest), (size_t)(size))
data/gwenview-20.08.3/lib/libjpeg-90/jinclude.h:68:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MEMCOPY(dest,src,size) memcpy((void *)(dest), (const void *)(src), (size_t)(size))
data/gwenview-20.08.3/lib/memoryutils.cpp:57:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( !memFile.open( QIODevice::ReadOnly ) )
data/gwenview-20.08.3/lib/memoryutils.cpp:95:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( !memFile.open( QIODevice::ReadOnly ) )
data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailgenerator.cpp:98:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
buffer.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailprovider.cpp:485:27: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!tempFile.open()) {
data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailwriter.cpp:52:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!tmp.open()) {
data/gwenview-20.08.3/tests/auto/cmsprofiletest.cpp:46:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QVERIFY(file.open(QIODevice::ReadOnly));
data/gwenview-20.08.3/tests/auto/cmsprofiletest.cpp:78:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QVERIFY(file.open(QIODevice::ReadOnly));
data/gwenview-20.08.3/tests/auto/imagemetainfomodeltest.cpp:50:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QVERIFY(file.open(QIODevice::ReadOnly));
data/gwenview-20.08.3/tests/auto/importertest.cpp:70:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QVERIFY(file.open(QIODevice::ReadOnly));
data/gwenview-20.08.3/tests/auto/importertest.cpp:75:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::WriteOnly);
data/gwenview-20.08.3/tests/auto/importertest.cpp:219:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QVERIFY(file.open(QIODevice::Append));
data/gwenview-20.08.3/tests/auto/jpegcontenttest.cpp:56:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
result = in.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/tests/auto/jpegcontenttest.cpp:67:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
result = out.open(QIODevice::WriteOnly);
data/gwenview-20.08.3/tests/auto/jpegcontenttest.cpp:275:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
result = file.open(QIODevice::ReadOnly);
data/gwenview-20.08.3/tests/auto/placetreemodeltest.cpp:107:42: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
const bool bookmarkOpened = bookmark.open(QIODevice::WriteOnly);
data/gwenview-20.08.3/tests/auto/semanticinfobackendtest.cpp:92:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QVERIFY(temp.open());
data/gwenview-20.08.3/tests/auto/testutils.cpp:81:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool ok = file.open(QIODevice::WriteOnly);
data/gwenview-20.08.3/tests/auto/timeutilstest.cpp:77:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
QVERIFY(tempFile.open());
data/gwenview-20.08.3/tests/manual/imageloadbench.cpp:19:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
device->open(QIODevice::ReadOnly);
data/gwenview-20.08.3/tests/manual/imageloadbench.cpp:45:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file.open(QIODevice::ReadOnly)) {
data/gwenview-20.08.3/importer/fileutils.cpp:102:39: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
QByteArray url1Array = file1->read(CHUNK_SIZE);
data/gwenview-20.08.3/importer/fileutils.cpp:103:39: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
QByteArray url2Array = file2->read(CHUNK_SIZE);
data/gwenview-20.08.3/importer/serializedurlmap.cpp:50:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void read()
data/gwenview-20.08.3/importer/serializedurlmap.cpp:92:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
d->read();
data/gwenview-20.08.3/lib/cms/cmsprofile_png.cpp:50:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int nr = in->read((char*)data, length);
data/gwenview-20.08.3/lib/document/loadingdocumentimpl.cpp:319:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool ok = reader.read(&mImage);
data/gwenview-20.08.3/lib/document/loadingdocumentimpl.cpp:341:24: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (reader.read(&nextImage)) {
data/gwenview-20.08.3/lib/document/loadingdocumentimpl.cpp:397:25: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
d->mData = file.read(HEADER_SIZE);
data/gwenview-20.08.3/lib/imageformats/fitshandler.cpp:54:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool FitsHandler::read(QImage *image)
data/gwenview-20.08.3/lib/imageformats/fitshandler.h:35:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool read(QImage *image) override;
data/gwenview-20.08.3/lib/iodevicejpegsourcemanager.cpp:55:36: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int readSize = src->mIODevice->read((char*)src->mBuffer, SOURCE_MANAGER_BUFFER_SIZE);
data/gwenview-20.08.3/lib/jpegcontent.cpp:688:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
io.read((unsigned char*)d->mRawData.data(), io.size());
data/gwenview-20.08.3/lib/thumbnailprovider/thumbnailgenerator.cpp:151:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (!reader.read(&originalImage)) {
data/gwenview-20.08.3/tests/auto/jpegcontenttest.cpp:63:23: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int readSize = in.read(data, size);
data/gwenview-20.08.3/tests/manual/imageloadbench.cpp:24:29: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
QImage img = reader.read();
ANALYSIS SUMMARY:
Hits = 80
Lines analyzed = 66430 in approximately 1.66 seconds (40033 lines/second)
Physical Source Lines of Code (SLOC) = 43707
Hits@level = [0] 3 [1] 15 [2] 61 [3] 3 [4] 0 [5] 1
Hits@level+ = [0+] 83 [1+] 80 [2+] 65 [3+] 4 [4+] 1 [5+] 1
Hits/KSLOC@level+ = [0+] 1.89901 [1+] 1.83037 [2+] 1.48718 [3+] 0.0915185 [4+] 0.0228796 [5+] 0.0228796
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.