Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/gwyddion-2.56/app/glmaterial-editor.h
Examining data/gwyddion-2.56/app/validate.h
Examining data/gwyddion-2.56/app/datachooser.c
Examining data/gwyddion-2.56/app/gradient-editor.c
Examining data/gwyddion-2.56/app/settings.h
Examining data/gwyddion-2.56/app/app.c
Examining data/gwyddion-2.56/app/app.h
Examining data/gwyddion-2.56/app/gradient-editor.h
Examining data/gwyddion-2.56/app/datachooser.h
Examining data/gwyddion-2.56/app/resource-editor.c
Examining data/gwyddion-2.56/app/file.h
Examining data/gwyddion-2.56/app/resource-editor.h
Examining data/gwyddion-2.56/app/gwyapptypes.h
Examining data/gwyddion-2.56/app/data-browser.c
Examining data/gwyddion-2.56/app/gwyappinternal.h
Examining data/gwyddion-2.56/app/gwyapp.h
Examining data/gwyddion-2.56/app/funcuse.c
Examining data/gwyddion-2.56/app/help.c
Examining data/gwyddion-2.56/app/meta.c
Examining data/gwyddion-2.56/app/gwyresultsexport.h
Examining data/gwyddion-2.56/app/log.c
Examining data/gwyddion-2.56/app/gwyresultsexport.c
Examining data/gwyddion-2.56/app/gwyplaintool.h
Examining data/gwyddion-2.56/app/gwyplaintool.c
Examining data/gwyddion-2.56/app/menu.c
Examining data/gwyddion-2.56/app/logging.h
Examining data/gwyddion-2.56/app/gwytool.h
Examining data/gwyddion-2.56/app/settings.c
Examining data/gwyddion-2.56/app/undo.c
Examining data/gwyddion-2.56/app/logging.c
Examining data/gwyddion-2.56/app/data-browser-aux.c
Examining data/gwyddion-2.56/app/undo.h
Examining data/gwyddion-2.56/app/funcuse.h
Examining data/gwyddion-2.56/app/gwyappfilechooser.c
Examining data/gwyddion-2.56/app/menu.h
Examining data/gwyddion-2.56/app/file.c
Examining data/gwyddion-2.56/app/gwyapptypes.c
Examining data/gwyddion-2.56/app/wait.h
Examining data/gwyddion-2.56/app/wait.c
Examining data/gwyddion-2.56/app/filelist.c
Examining data/gwyddion-2.56/app/gwymoduleutils.c
Examining data/gwyddion-2.56/app/validate.c
Examining data/gwyddion-2.56/app/log.h
Examining data/gwyddion-2.56/app/gwymoduleutils-file.h
Examining data/gwyddion-2.56/app/gwymoduleutils.h
Examining data/gwyddion-2.56/app/data-browser.h
Examining data/gwyddion-2.56/app/meta.h
Examining data/gwyddion-2.56/app/gwymoduleutils-file.c
Examining data/gwyddion-2.56/app/glmaterial-editor.c
Examining data/gwyddion-2.56/app/gwytool.c
Examining data/gwyddion-2.56/app/filelist.h
Examining data/gwyddion-2.56/app/help.h
Examining data/gwyddion-2.56/app/gwyappfilechooser.h
Examining data/gwyddion-2.56/gwyddion/mac_integration.c
Examining data/gwyddion-2.56/gwyddion/tips.c
Examining data/gwyddion-2.56/gwyddion/splash.c
Examining data/gwyddion-2.56/gwyddion/authors.h
Examining data/gwyddion-2.56/gwyddion/gwyddion.h
Examining data/gwyddion-2.56/gwyddion/remote-unique.c
Examining data/gwyddion-2.56/gwyddion/release.h
Examining data/gwyddion-2.56/gwyddion/toolbox-editor.c
Examining data/gwyddion-2.56/gwyddion/toolbox-spec.c
Examining data/gwyddion-2.56/gwyddion/remote-x11.c
Examining data/gwyddion-2.56/gwyddion/gwyddion.c
Examining data/gwyddion-2.56/gwyddion/toolbox.h
Examining data/gwyddion-2.56/gwyddion/remote-win32.c
Examining data/gwyddion-2.56/gwyddion/remote.c
Examining data/gwyddion-2.56/gwyddion/about.c
Examining data/gwyddion-2.56/gwyddion/toolbox.c
Examining data/gwyddion-2.56/gwyddion/mac_integration.h
Examining data/gwyddion-2.56/thumbnailer/gwyddion-thumbnailer.c
Examining data/gwyddion-2.56/thumbnailer/gwythumbcreator.cc
Examining data/gwyddion-2.56/modules/file/zemax.c
Examining data/gwyddion-2.56/modules/file/nxiifile.c
Examining data/gwyddion-2.56/modules/file/oirfile.c
Examining data/gwyddion-2.56/modules/file/dektakxml.c
Examining data/gwyddion-2.56/modules/file/jspmfile.c
Examining data/gwyddion-2.56/modules/file/sensofar.c
Examining data/gwyddion-2.56/modules/file/intematix.c
Examining data/gwyddion-2.56/modules/file/nanosystemz.c
Examining data/gwyddion-2.56/modules/file/dmefile.c
Examining data/gwyddion-2.56/modules/file/gsffile.c
Examining data/gwyddion-2.56/modules/file/dm3file.c
Examining data/gwyddion-2.56/modules/file/mulfile.c
Examining data/gwyddion-2.56/modules/file/hdf5file.c
Examining data/gwyddion-2.56/modules/file/tiaser.c
Examining data/gwyddion-2.56/modules/file/nanoscan.c
Examining data/gwyddion-2.56/modules/file/spmxfile.c
Examining data/gwyddion-2.56/modules/file/jeol.c
Examining data/gwyddion-2.56/modules/file/omicron.c
Examining data/gwyddion-2.56/modules/file/fitsfile.c
Examining data/gwyddion-2.56/modules/file/opengps.c
Examining data/gwyddion-2.56/modules/file/leica.c
Examining data/gwyddion-2.56/modules/file/burleigh_exp.c
Examining data/gwyddion-2.56/modules/file/createc.c
Examining data/gwyddion-2.56/modules/file/jpk.h
Examining data/gwyddion-2.56/modules/file/ambprofile.c
Examining data/gwyddion-2.56/modules/file/hitachi-afm.c
Examining data/gwyddion-2.56/modules/file/robotics.c
Examining data/gwyddion-2.56/modules/file/rawfile.c
Examining data/gwyddion-2.56/modules/file/nanoscantech.c
Examining data/gwyddion-2.56/modules/file/codevfile.c
Examining data/gwyddion-2.56/modules/file/sis.c
Examining data/gwyddion-2.56/modules/file/omicronflat.c
Examining data/gwyddion-2.56/modules/file/ometiff.c
Examining data/gwyddion-2.56/modules/file/princetonspe.c
Examining data/gwyddion-2.56/modules/file/gdeffile.c
Examining data/gwyddion-2.56/modules/file/intelliwave.c
Examining data/gwyddion-2.56/modules/file/assing-afm.c
Examining data/gwyddion-2.56/modules/file/nanonis.c
Examining data/gwyddion-2.56/modules/file/spip-asc.c
Examining data/gwyddion-2.56/modules/file/opdfile.c
Examining data/gwyddion-2.56/modules/file/mifile.c
Examining data/gwyddion-2.56/modules/file/rhk-sm4.c
Examining data/gwyddion-2.56/modules/file/rhk-sm3.c
Examining data/gwyddion-2.56/modules/file/seiko.c
Examining data/gwyddion-2.56/modules/file/nanomagnetics.c
Examining data/gwyddion-2.56/modules/file/miffile.c
Examining data/gwyddion-2.56/modules/file/rawgraph.c
Examining data/gwyddion-2.56/modules/file/dumbfile.c
Examining data/gwyddion-2.56/modules/file/aistfile.c
Examining data/gwyddion-2.56/modules/file/stpfile.c
Examining data/gwyddion-2.56/modules/file/unisoku.c
Examining data/gwyddion-2.56/modules/file/jpkscan.c
Examining data/gwyddion-2.56/modules/file/hdf4file.c
Examining data/gwyddion-2.56/modules/file/alicona.c
Examining data/gwyddion-2.56/modules/file/imgexportpreset.h
Examining data/gwyddion-2.56/modules/file/attocube.c
Examining data/gwyddion-2.56/modules/file/igorfile.c
Examining data/gwyddion-2.56/modules/file/nanonics.c
Examining data/gwyddion-2.56/modules/file/sensolytics.c
Examining data/gwyddion-2.56/modules/file/sicmfile.c
Examining data/gwyddion-2.56/modules/file/nrrdfile.c
Examining data/gwyddion-2.56/modules/file/wsxmfile.c
Examining data/gwyddion-2.56/modules/file/pt3file.c
Examining data/gwyddion-2.56/modules/file/pixmap.c
Examining data/gwyddion-2.56/modules/file/nt-mdt.c
Examining data/gwyddion-2.56/modules/file/rhk-spm32.c
Examining data/gwyddion-2.56/modules/file/apedaxfile.c
Examining data/gwyddion-2.56/modules/file/nanoscope.c
Examining data/gwyddion-2.56/modules/file/psia.c
Examining data/gwyddion-2.56/modules/file/dimensionfile.c
Examining data/gwyddion-2.56/modules/file/ambfile.c
Examining data/gwyddion-2.56/modules/file/anasys_xml.c
Examining data/gwyddion-2.56/modules/file/csmfile.c
Examining data/gwyddion-2.56/modules/file/mapvue.c
Examining data/gwyddion-2.56/modules/file/rawfilepreset.h
Examining data/gwyddion-2.56/modules/file/ezdfile.c
Examining data/gwyddion-2.56/modules/file/netcdf.c
Examining data/gwyddion-2.56/modules/file/microprof.c
Examining data/gwyddion-2.56/modules/file/hitachi-sem.c
Examining data/gwyddion-2.56/modules/file/s94file.c
Examining data/gwyddion-2.56/modules/file/zeisslsm.c
Examining data/gwyddion-2.56/modules/file/dektakvca.c
Examining data/gwyddion-2.56/modules/file/lextfile.c
Examining data/gwyddion-2.56/modules/file/wsffile.c
Examining data/gwyddion-2.56/modules/file/afmw-spec.c
Examining data/gwyddion-2.56/modules/file/gwytiff.h
Examining data/gwyddion-2.56/modules/file/matfile.c
Examining data/gwyddion-2.56/modules/file/spml.c
Examining data/gwyddion-2.56/modules/file/anfatec.c
Examining data/gwyddion-2.56/modules/file/iso28600.c
Examining data/gwyddion-2.56/modules/file/oldmda.c
Examining data/gwyddion-2.56/modules/file/image-keys.h
Examining data/gwyddion-2.56/modules/file/accurexii-txt.c
Examining data/gwyddion-2.56/modules/file/burleigh_bii.c
Examining data/gwyddion-2.56/modules/file/nanoscope-ii.c
Examining data/gwyddion-2.56/modules/file/quesant.c
Examining data/gwyddion-2.56/modules/file/witfile.c
Examining data/gwyddion-2.56/modules/file/bcrfile.c
Examining data/gwyddion-2.56/modules/file/spmlab.c
Examining data/gwyddion-2.56/modules/file/file.c
Examining data/gwyddion-2.56/modules/file/sensofarx.c
Examining data/gwyddion-2.56/modules/file/spcfile.c
Examining data/gwyddion-2.56/modules/file/nanotop.c
Examining data/gwyddion-2.56/modules/file/imgexport.c
Examining data/gwyddion-2.56/modules/file/nmmxyz.c
Examining data/gwyddion-2.56/modules/file/nanoeducator.c
Examining data/gwyddion-2.56/modules/file/burleigh.c
Examining data/gwyddion-2.56/modules/file/asciiexport.c
Examining data/gwyddion-2.56/modules/file/stmprg.c
Examining data/gwyddion-2.56/modules/file/nanonis-spec.c
Examining data/gwyddion-2.56/modules/file/xyzexport.c
Examining data/gwyddion-2.56/modules/file/nanoobserver.c
Examining data/gwyddion-2.56/modules/file/keyence.c
Examining data/gwyddion-2.56/modules/file/get.h
Examining data/gwyddion-2.56/modules/file/sdfile.c
Examining data/gwyddion-2.56/modules/file/win_stm.c
Examining data/gwyddion-2.56/modules/file/gwyzip.h
Examining data/gwyddion-2.56/modules/file/pltfile.c
Examining data/gwyddion-2.56/modules/file/femtoscan.c
Examining data/gwyddion-2.56/modules/file/spmlabf.c
Examining data/gwyddion-2.56/modules/file/err.h
Examining data/gwyddion-2.56/modules/file/wipfile.c
Examining data/gwyddion-2.56/modules/file/phoenix.c
Examining data/gwyddion-2.56/modules/file/magellan.c
Examining data/gwyddion-2.56/modules/file/shimadzu.c
Examining data/gwyddion-2.56/modules/file/renishaw.c
Examining data/gwyddion-2.56/modules/file/formats3d.c
Examining data/gwyddion-2.56/modules/file/witec-asc.c
Examining data/gwyddion-2.56/modules/file/femtoscan-txt.c
Examining data/gwyddion-2.56/modules/file/metropro.c
Examining data/gwyddion-2.56/modules/file/ecsfile.c
Examining data/gwyddion-2.56/modules/file/spml-utils.h
Examining data/gwyddion-2.56/modules/file/gwyfile.c
Examining data/gwyddion-2.56/modules/file/ttffile.c
Examining data/gwyddion-2.56/modules/file/gxyzffile.c
Examining data/gwyddion-2.56/modules/file/apefile.c
Examining data/gwyddion-2.56/modules/file/tescan.c
Examining data/gwyddion-2.56/modules/file/surffile.c
Examining data/gwyddion-2.56/modules/file/ols.c
Examining data/gwyddion-2.56/modules/file/hdrimage.cc
Examining data/gwyddion-2.56/modules/file/omicronmatrix.c
Examining data/gwyddion-2.56/modules/file/zeiss.c
Examining data/gwyddion-2.56/modules/file/pnifile.c
Examining data/gwyddion-2.56/modules/xyz/xyz_raster.c
Examining data/gwyddion-2.56/modules/xyz/xyz_level.c
Examining data/gwyddion-2.56/modules/xyz/xyz.c
Examining data/gwyddion-2.56/modules/xyz/xyz_drift.c
Examining data/gwyddion-2.56/modules/xyz/xyzops.c
Examining data/gwyddion-2.56/modules/xyz/xyz_split.c
Examining data/gwyddion-2.56/modules/layer/axis.c
Examining data/gwyddion-2.56/modules/layer/layer.c
Examining data/gwyddion-2.56/modules/layer/cross.c
Examining data/gwyddion-2.56/modules/layer/rectangle.c
Examining data/gwyddion-2.56/modules/layer/layer.h
Examining data/gwyddion-2.56/modules/layer/lattice.c
Examining data/gwyddion-2.56/modules/layer/point.c
Examining data/gwyddion-2.56/modules/layer/line.c
Examining data/gwyddion-2.56/modules/layer/path.c
Examining data/gwyddion-2.56/modules/layer/ellipse.c
Examining data/gwyddion-2.56/modules/tools/profile.c
Examining data/gwyddion-2.56/modules/tools/crop.c
Examining data/gwyddion-2.56/modules/tools/stats.c
Examining data/gwyddion-2.56/modules/tools/level3.c
Examining data/gwyddion-2.56/modules/tools/sfunctions.c
Examining data/gwyddion-2.56/modules/tools/pathlevel.c
Examining data/gwyddion-2.56/modules/tools/maskedit.c
Examining data/gwyddion-2.56/modules/tools/readvalue.c
Examining data/gwyddion-2.56/modules/tools/rprofile.c
Examining data/gwyddion-2.56/modules/tools/distance.c
Examining data/gwyddion-2.56/modules/tools/tools.c
Examining data/gwyddion-2.56/modules/tools/cprofile.c
Examining data/gwyddion-2.56/modules/tools/spectro.c
Examining data/gwyddion-2.56/modules/tools/grainremover.c
Examining data/gwyddion-2.56/modules/tools/icolorange.c
Examining data/gwyddion-2.56/modules/tools/corrlen.c
Examining data/gwyddion-2.56/modules/tools/filter.c
Examining data/gwyddion-2.56/modules/tools/grainmeasure.c
Examining data/gwyddion-2.56/modules/tools/roughness.c
Examining data/gwyddion-2.56/modules/tools/linestats.c
Examining data/gwyddion-2.56/modules/tools/spotremove.c
Examining data/gwyddion-2.56/modules/tools/selectionmanager.c
Examining data/gwyddion-2.56/modules/pygwy/pygwy.c
Examining data/gwyddion-2.56/modules/pygwy/pygtk-embed/include/pygtk-2.0/pygtk/pygtk.h
Examining data/gwyddion-2.56/modules/pygwy/pygtk-embed/include/pygtk-2.0/pygobject.h
Examining data/gwyddion-2.56/modules/pygwy/macro-prototypes.h
Examining data/gwyddion-2.56/modules/pygwy/pygwy.h
Examining data/gwyddion-2.56/modules/pygwy/wrap_calls.h
Examining data/gwyddion-2.56/modules/pygwy/pygwy-console.c
Examining data/gwyddion-2.56/modules/pygwy/gwy.c
Examining data/gwyddion-2.56/modules/pygwy/pygwy-console.h
Examining data/gwyddion-2.56/modules/pygwy/wrap_calls.c
Examining data/gwyddion-2.56/modules/graph/graph_fdfit.c
Examining data/gwyddion-2.56/modules/graph/graph_logscale.c
Examining data/gwyddion-2.56/modules/graph/graph_terraces.c
Examining data/gwyddion-2.56/modules/graph/graph_filter.c
Examining data/gwyddion-2.56/modules/graph/graph_export_bitmap.c
Examining data/gwyddion-2.56/modules/graph/graph_cd.c
Examining data/gwyddion-2.56/modules/graph/graph_align.c
Examining data/gwyddion-2.56/modules/graph/graph_dos_spectrum.c
Examining data/gwyddion-2.56/modules/graph/graph_level.c
Examining data/gwyddion-2.56/modules/graph/graph.c
Examining data/gwyddion-2.56/modules/graph/graph_sfuncs.c
Examining data/gwyddion-2.56/modules/graph/graph_export_vector.c
Examining data/gwyddion-2.56/modules/graph/graph_fit.c
Examining data/gwyddion-2.56/modules/graph/graph_cut.c
Examining data/gwyddion-2.56/modules/graph/graph_export_ascii.c
Examining data/gwyddion-2.56/modules/graph/graph_peaks.c
Examining data/gwyddion-2.56/modules/graph/graph_stats.c
Examining data/gwyddion-2.56/modules/volume/volume_mfmrecalc.c
Examining data/gwyddion-2.56/modules/volume/volume_planestat.c
Examining data/gwyddion-2.56/modules/volume/volume_asciiexport.c
Examining data/gwyddion-2.56/modules/volume/volume_linestat.c
Examining data/gwyddion-2.56/modules/volume/volume_invert.c
Examining data/gwyddion-2.56/modules/volume/volume_rephase.c
Examining data/gwyddion-2.56/modules/volume/volumeops.c
Examining data/gwyddion-2.56/modules/volume/volume.c
Examining data/gwyddion-2.56/modules/volume/volume_planelevel.c
Examining data/gwyddion-2.56/modules/volume/volume_kmeans.c
Examining data/gwyddion-2.56/modules/volume/volume_swaxes.c
Examining data/gwyddion-2.56/modules/volume/volume_extract.c
Examining data/gwyddion-2.56/modules/volume/volume_strayfield.c
Examining data/gwyddion-2.56/modules/volume/volume_slice.c
Examining data/gwyddion-2.56/modules/volume/volume_arithmetic.c
Examining data/gwyddion-2.56/modules/volume/volume_fdfit.c
Examining data/gwyddion-2.56/modules/volume/volume_calibrate.c
Examining data/gwyddion-2.56/modules/volume/volume_zposlevel.c
Examining data/gwyddion-2.56/modules/volume/volume_outliers.c
Examining data/gwyddion-2.56/modules/volume/volume_psf.c
Examining data/gwyddion-2.56/modules/volume/volume_kmedians.c
Examining data/gwyddion-2.56/modules/volume/volume_zcal.c
Examining data/gwyddion-2.56/modules/volume/volume_equiplane.c
Examining data/gwyddion-2.56/modules/plugin-proxy.c
Examining data/gwyddion-2.56/modules/process/deposit_synth.c
Examining data/gwyddion-2.56/modules/process/correct_affine.c
Examining data/gwyddion-2.56/modules/process/mfm_parallel.c
Examining data/gwyddion-2.56/modules/process/outliers.c
Examining data/gwyddion-2.56/modules/process/gradient.c
Examining data/gwyddion-2.56/modules/process/coerce.c
Examining data/gwyddion-2.56/modules/process/arithmetic.c
Examining data/gwyddion-2.56/modules/process/tip_blind.c
Examining data/gwyddion-2.56/modules/process/rank.c
Examining data/gwyddion-2.56/modules/process/mask_edt.c
Examining data/gwyddion-2.56/modules/process/nanoindent_adjust.c
Examining data/gwyddion-2.56/modules/process/convolutionfilterpreset.h
Examining data/gwyddion-2.56/modules/process/grain_cross.c
Examining data/gwyddion-2.56/modules/process/mark_with.c
Examining data/gwyddion-2.56/modules/process/pat_synth.c
Examining data/gwyddion-2.56/modules/process/fft_filter_1d.c
Examining data/gwyddion-2.56/modules/process/phase_synth.c
Examining data/gwyddion-2.56/modules/process/grain_dist.c
Examining data/gwyddion-2.56/modules/process/flatten_base.c
Examining data/gwyddion-2.56/modules/process/roddeposit_synth.c
Examining data/gwyddion-2.56/modules/process/obj_synth.c
Examining data/gwyddion-2.56/modules/process/unrotate.c
Examining data/gwyddion-2.56/modules/process/trimmed-mean.c
Examining data/gwyddion-2.56/modules/process/edge.c
Examining data/gwyddion-2.56/modules/process/logistic.c
Examining data/gwyddion-2.56/modules/process/gaussian_step.c
Examining data/gwyddion-2.56/modules/process/col_synth.c
Examining data/gwyddion-2.56/modules/process/dimensions.h
Examining data/gwyddion-2.56/modules/process/shade.c
Examining data/gwyddion-2.56/modules/process/fft.c
Examining data/gwyddion-2.56/modules/process/fraccor.c
Examining data/gwyddion-2.56/modules/process/scale.c
Examining data/gwyddion-2.56/modules/process/terracefit.c
Examining data/gwyddion-2.56/modules/process/fbm_synth.c
Examining data/gwyddion-2.56/modules/process/mfmops.h
Examining data/gwyddion-2.56/modules/process/scars.c
Examining data/gwyddion-2.56/modules/process/fractal.c
Examining data/gwyddion-2.56/modules/process/pid.c
Examining data/gwyddion-2.56/modules/process/facet_analysis.c
Examining data/gwyddion-2.56/modules/process/threshold.c
Examining data/gwyddion-2.56/modules/process/noise_synth.c
Examining data/gwyddion-2.56/modules/process/entropy.c
Examining data/gwyddion-2.56/modules/process/cwt.c
Examining data/gwyddion-2.56/modules/process/sphere-revolve.c
Examining data/gwyddion-2.56/modules/process/domain_synth.c
Examining data/gwyddion-2.56/modules/process/rank-filter.c
Examining data/gwyddion-2.56/modules/process/diff_synth.c
Examining data/gwyddion-2.56/modules/process/polydistort.c
Examining data/gwyddion-2.56/modules/process/calcoefs_simple.c
Examining data/gwyddion-2.56/modules/process/angle_dist.c
Examining data/gwyddion-2.56/modules/process/level_grains.c
Examining data/gwyddion-2.56/modules/process/raveraging.c
Examining data/gwyddion-2.56/modules/process/convolve.c
Examining data/gwyddion-2.56/modules/process/bdep_synth.c
Examining data/gwyddion-2.56/modules/process/immerse.c
Examining data/gwyddion-2.56/modules/process/facet_measure.c
Examining data/gwyddion-2.56/modules/process/maskops.c
Examining data/gwyddion-2.56/modules/process/mark_disconn.c
Examining data/gwyddion-2.56/modules/process/mask_morph.c
Examining data/gwyddion-2.56/modules/process/superresolution.c
Examining data/gwyddion-2.56/modules/process/extract_path.c
Examining data/gwyddion-2.56/modules/process/tilt.c
Examining data/gwyddion-2.56/modules/process/slope_dist.c
Examining data/gwyddion-2.56/modules/process/volumize_layers.c
Examining data/gwyddion-2.56/modules/process/cpde_synth.c
Examining data/gwyddion-2.56/modules/process/straighten_path.c
Examining data/gwyddion-2.56/modules/process/basicops.c
Examining data/gwyddion-2.56/modules/process/displfield.c
Examining data/gwyddion-2.56/modules/process/mfm_findshift.c
Examining data/gwyddion-2.56/modules/process/merge.c
Examining data/gwyddion-2.56/modules/process/mask_noisify.c
Examining data/gwyddion-2.56/modules/process/polylevel.c
Examining data/gwyddion-2.56/modules/process/pileup_synth.c
Examining data/gwyddion-2.56/modules/process/fit-shape.c
Examining data/gwyddion-2.56/modules/process/calcoefs_new.c
Examining data/gwyddion-2.56/modules/process/facet-level.c
Examining data/gwyddion-2.56/modules/process/mfm_shift.c
Examining data/gwyddion-2.56/modules/process/median-bg.c
Examining data/gwyddion-2.56/modules/process/fft_synth.c
Examining data/gwyddion-2.56/modules/process/wpour_mark.c
Examining data/gwyddion-2.56/modules/process/measure_lattice.c
Examining data/gwyddion-2.56/modules/process/wrapvalue.c
Examining data/gwyddion-2.56/modules/process/rotate.c
Examining data/gwyddion-2.56/modules/process/disc_synth.c
Examining data/gwyddion-2.56/modules/process/acf2d.c
Examining data/gwyddion-2.56/modules/process/neural.c
Examining data/gwyddion-2.56/modules/process/calcoefs_view.c
Examining data/gwyddion-2.56/modules/process/mfm_field.c
Examining data/gwyddion-2.56/modules/process/convolution_filter.c
Examining data/gwyddion-2.56/modules/process/psdf2d.c
Examining data/gwyddion-2.56/modules/process/freq_split.c
Examining data/gwyddion-2.56/modules/process/otsu_threshold.c
Examining data/gwyddion-2.56/modules/process/relate.c
Examining data/gwyddion-2.56/modules/process/drift.c
Examining data/gwyddion-2.56/modules/process/semsim.c
Examining data/gwyddion-2.56/modules/process/laplace.c
Examining data/gwyddion-2.56/modules/process/mcrop.c
Examining data/gwyddion-2.56/modules/process/crosscor.c
Examining data/gwyddion-2.56/modules/process/xyzize.c
Examining data/gwyddion-2.56/modules/process/binning.c
Examining data/gwyddion-2.56/modules/process/extend.c
Examining data/gwyddion-2.56/modules/process/hertz.c
Examining data/gwyddion-2.56/modules/process/level.c
Examining data/gwyddion-2.56/modules/process/indent_analyze.c
Examining data/gwyddion-2.56/modules/process/grain_filter.c
Examining data/gwyddion-2.56/modules/process/xyz_channels.c
Examining data/gwyddion-2.56/modules/process/grain_mark.c
Examining data/gwyddion-2.56/modules/process/grain_wshed.c
Examining data/gwyddion-2.56/modules/process/presentationops.c
Examining data/gwyddion-2.56/modules/process/dwt.c
Examining data/gwyddion-2.56/modules/process/tip_model.c
Examining data/gwyddion-2.56/modules/process/process.c
Examining data/gwyddion-2.56/modules/process/grain_stat.c
Examining data/gwyddion-2.56/modules/process/tipshape.c
Examining data/gwyddion-2.56/modules/process/preview.h
Examining data/gwyddion-2.56/modules/process/synth.h
Examining data/gwyddion-2.56/modules/process/local_contrast.c
Examining data/gwyddion-2.56/modules/process/averaging.c
Examining data/gwyddion-2.56/modules/process/lno_synth.c
Examining data/gwyddion-2.56/modules/process/dwtanisotropy.c
Examining data/gwyddion-2.56/modules/process/grain_edge.c
Examining data/gwyddion-2.56/modules/process/deconvolve.c
Examining data/gwyddion-2.56/modules/process/fibre_synth.c
Examining data/gwyddion-2.56/modules/process/mfm_recalc.c
Examining data/gwyddion-2.56/modules/process/anneal_synth.c
Examining data/gwyddion-2.56/modules/process/mask_distribute.c
Examining data/gwyddion-2.56/modules/process/linematch.c
Examining data/gwyddion-2.56/modules/process/calcoefs_load.c
Examining data/gwyddion-2.56/modules/process/psf.c
Examining data/gwyddion-2.56/modules/process/volumize.c
Examining data/gwyddion-2.56/modules/process/neuraldata.h
Examining data/gwyddion-2.56/modules/process/curvature.c
Examining data/gwyddion-2.56/modules/process/psf-fit.c
Examining data/gwyddion-2.56/modules/process/calibrate.c
Examining data/gwyddion-2.56/modules/process/wave_synth.c
Examining data/gwyddion-2.56/modules/process/psdf_logphi.c
Examining data/gwyddion-2.56/modules/process/resample.c
Examining data/gwyddion-2.56/modules/process/mfm_current.c
Examining data/gwyddion-2.56/modules/process/hough.c
Examining data/gwyddion-2.56/modules/process/stitch.c
Examining data/gwyddion-2.56/modules/process/fft_filter_2d.c
Examining data/gwyddion-2.56/modules/process/maskcor.c
Examining data/gwyddion-2.56/modules/process/lat_synth.c
Examining data/gwyddion-2.56/modules/process/linecorrect.c
Examining data/gwyddion-2.56/modules/process/tipops.c
Examining data/gwyddion-2.56/modules/process/xydenoise.c
Examining data/gwyddion-2.56/modules/process/zero_crossing.c
Examining data/gwyddion-2.56/modules/process/latsim.c
Examining data/gwyddion-2.56/utils/dump-modules.c
Examining data/gwyddion-2.56/libprocess/arithmetic.c
Examining data/gwyddion-2.56/libprocess/correlation.c
Examining data/gwyddion-2.56/libprocess/gwyprocessenums.h
Examining data/gwyddion-2.56/libprocess/stats-acfpsdf.c
Examining data/gwyddion-2.56/libprocess/mfm.c
Examining data/gwyddion-2.56/libprocess/mfm.h
Examining data/gwyddion-2.56/libprocess/grains-disttrans.c
Examining data/gwyddion-2.56/libprocess/peaks.c
Examining data/gwyddion-2.56/libprocess/gwyprocessinternal.h
Examining data/gwyddion-2.56/libprocess/interpolation.c
Examining data/gwyddion-2.56/libprocess/stats.c
Examining data/gwyddion-2.56/libprocess/gwycaldata.h
Examining data/gwyddion-2.56/libprocess/dwt.h
Examining data/gwyddion-2.56/libprocess/spline.h
Examining data/gwyddion-2.56/libprocess/morph_lib.c
Examining data/gwyddion-2.56/libprocess/morph_lib.h
Examining data/gwyddion-2.56/libprocess/brick.h
Examining data/gwyddion-2.56/libprocess/peaks.h
Examining data/gwyddion-2.56/libprocess/cwt.c
Examining data/gwyddion-2.56/libprocess/stats-sum.c
Examining data/gwyddion-2.56/libprocess/gwycalibration.h
Examining data/gwyddion-2.56/libprocess/gwygrainvalue.c
Examining data/gwyddion-2.56/libprocess/fractals.c
Examining data/gwyddion-2.56/libprocess/gwyprocesstypes.h
Examining data/gwyddion-2.56/libprocess/stats-entropy.c
Examining data/gwyddion-2.56/libprocess/spectra.h
Examining data/gwyddion-2.56/libprocess/cdline.h
Examining data/gwyddion-2.56/libprocess/spectra.c
Examining data/gwyddion-2.56/libprocess/grains.c
Examining data/gwyddion-2.56/libprocess/correlation.h
Examining data/gwyddion-2.56/libprocess/natural.h
Examining data/gwyddion-2.56/libprocess/triangulation.c
Examining data/gwyddion-2.56/libprocess/datafield.h
Examining data/gwyddion-2.56/libprocess/grains.h
Examining data/gwyddion-2.56/libprocess/simplefft.c
Examining data/gwyddion-2.56/libprocess/arithmetic.h
Examining data/gwyddion-2.56/libprocess/correct.h
Examining data/gwyddion-2.56/libprocess/interpolation.h
Examining data/gwyddion-2.56/libprocess/brick.c
Examining data/gwyddion-2.56/libprocess/elliptic.h
Examining data/gwyddion-2.56/libprocess/stats_uncertainty.c
Examining data/gwyddion-2.56/libprocess/simplefft.h
Examining data/gwyddion-2.56/libprocess/gwyprocess.c
Examining data/gwyddion-2.56/libprocess/stats_uncertainty.h
Examining data/gwyddion-2.56/libprocess/filters-minmax.c
Examining data/gwyddion-2.56/libprocess/surface.h
Examining data/gwyddion-2.56/libprocess/surface.c
Examining data/gwyddion-2.56/libprocess/filters.c
Examining data/gwyddion-2.56/libprocess/datafield.c
Examining data/gwyddion-2.56/libprocess/natural.c
Examining data/gwyddion-2.56/libprocess/gwyshapefitpreset.h
Examining data/gwyddion-2.56/libprocess/gwyprocesstypes.c
Examining data/gwyddion-2.56/libprocess/cwt.h
Examining data/gwyddion-2.56/libprocess/elliptic.c
Examining data/gwyddion-2.56/libprocess/gwyprocess.h
Examining data/gwyddion-2.56/libprocess/stats.h
Examining data/gwyddion-2.56/libprocess/level.c
Examining data/gwyddion-2.56/libprocess/cdline.c
Examining data/gwyddion-2.56/libprocess/gwycaldata.c
Examining data/gwyddion-2.56/libprocess/dwt.c
Examining data/gwyddion-2.56/libprocess/tip.c
Examining data/gwyddion-2.56/libprocess/grains-values.c
Examining data/gwyddion-2.56/libprocess/filters.h
Examining data/gwyddion-2.56/libprocess/linestats.h
Examining data/gwyddion-2.56/libprocess/dataline.h
Examining data/gwyddion-2.56/libprocess/gwyfftw.h
Examining data/gwyddion-2.56/libprocess/grains-wshed.c
Examining data/gwyddion-2.56/libprocess/hough.h
Examining data/gwyddion-2.56/libprocess/inttrans.c
Examining data/gwyddion-2.56/libprocess/gwyshapefitpreset.c
Examining data/gwyddion-2.56/libprocess/correct.c
Examining data/gwyddion-2.56/libprocess/linestats.c
Examining data/gwyddion-2.56/libprocess/gwygrainvalue.h
Examining data/gwyddion-2.56/libprocess/filters-convdeconv.c
Examining data/gwyddion-2.56/libprocess/spline.c
Examining data/gwyddion-2.56/libprocess/gwyprocessenums.c
Examining data/gwyddion-2.56/libprocess/fractals.h
Examining data/gwyddion-2.56/libprocess/triangulation.h
Examining data/gwyddion-2.56/libprocess/level.h
Examining data/gwyddion-2.56/libprocess/gwycalibration.c
Examining data/gwyddion-2.56/libprocess/dataline.c
Examining data/gwyddion-2.56/libprocess/inttrans.h
Examining data/gwyddion-2.56/libprocess/hough.c
Examining data/gwyddion-2.56/libprocess/correct-laplace.c
Examining data/gwyddion-2.56/libprocess/tip.h
Examining data/gwyddion-2.56/libgwymodule/gwymodule-xyz.c
Examining data/gwyddion-2.56/libgwymodule/gwymodule-tool.h
Examining data/gwyddion-2.56/libgwymodule/gwymodule-volume.c
Examining data/gwyddion-2.56/libgwymodule/gwymoduletypes.c
Examining data/gwyddion-2.56/libgwymodule/gwymodule-file.c
Examining data/gwyddion-2.56/libgwymodule/gwymodule-layer.h
Examining data/gwyddion-2.56/libgwymodule/gwymodule-file.h
Examining data/gwyddion-2.56/libgwymodule/gwymodule-volume.h
Examining data/gwyddion-2.56/libgwymodule/gwymoduleloader.c
Examining data/gwyddion-2.56/libgwymodule/gwymoduleinternal.h
Examining data/gwyddion-2.56/libgwymodule/gwymodule.h
Examining data/gwyddion-2.56/libgwymodule/gwymodule-graph.c
Examining data/gwyddion-2.56/libgwymodule/gwymoduleloader.h
Examining data/gwyddion-2.56/libgwymodule/gwymodule-graph.h
Examining data/gwyddion-2.56/libgwymodule/gwymoduletypes.h
Examining data/gwyddion-2.56/libgwymodule/gwymodulebrowser.h
Examining data/gwyddion-2.56/libgwymodule/gwymodule-process.c
Examining data/gwyddion-2.56/libgwymodule/gwymodule-layer.c
Examining data/gwyddion-2.56/libgwymodule/gwymodulebrowser.c
Examining data/gwyddion-2.56/libgwymodule/gwymodule-process.h
Examining data/gwyddion-2.56/libgwymodule/gwymodule-tool.c
Examining data/gwyddion-2.56/libgwymodule/gwymodule-xyz.h
Examining data/gwyddion-2.56/libgwymodule/gwymoduleenums.h
Examining data/gwyddion-2.56/plugins/dump.cc
Examining data/gwyddion-2.56/plugins/dump.c
Examining data/gwyddion-2.56/plugins/invert_cpp.cc
Examining data/gwyddion-2.56/libgwyddion/gwyentities.c
Examining data/gwyddion-2.56/libgwyddion/gwythreads.c
Examining data/gwyddion-2.56/libgwyddion/gwymathfallback.h
Examining data/gwyddion-2.56/libgwyddion/gwyenum.c
Examining data/gwyddion-2.56/libgwyddion/gwystringlist.h
Examining data/gwyddion-2.56/libgwyddion/gwyresults.c
Examining data/gwyddion-2.56/libgwyddion/gwyresults.h
Examining data/gwyddion-2.56/libgwyddion/gwyinventory.c
Examining data/gwyddion-2.56/libgwyddion/gwyddiontypes.c
Examining data/gwyddion-2.56/libgwyddion/gwyddioninternal.h
Examining data/gwyddion-2.56/libgwyddion/gwymacros.h
Examining data/gwyddion-2.56/libgwyddion/gwyddion.h
Examining data/gwyddion-2.56/libgwyddion/gwyenum.h
Examining data/gwyddion-2.56/libgwyddion/gwyutils.c
Examining data/gwyddion-2.56/libgwyddion/gwyresource.h
Examining data/gwyddion-2.56/libgwyddion/gwymd5.h
Examining data/gwyddion-2.56/libgwyddion/gwyserializable.h
Examining data/gwyddion-2.56/libgwyddion/gwydebugobjects.c
Examining data/gwyddion-2.56/libgwyddion/gwyinventory.h
Examining data/gwyddion-2.56/libgwyddion/gwynlfit.h
Examining data/gwyddion-2.56/libgwyddion/gwymath.c
Examining data/gwyddion-2.56/libgwyddion/gwyfdcurvepreset.c
Examining data/gwyddion-2.56/libgwyddion/gwysivalueformat.h
Examining data/gwyddion-2.56/libgwyddion/gwyexpr.h
Examining data/gwyddion-2.56/libgwyddion/gwymd5.c
Examining data/gwyddion-2.56/libgwyddion/gwyexpr.c
Examining data/gwyddion-2.56/libgwyddion/gwyentities.h
Examining data/gwyddion-2.56/libgwyddion/gwythreads.h
Examining data/gwyddion-2.56/libgwyddion/gwystringlist.c
Examining data/gwyddion-2.56/libgwyddion/gwysivalueformat.c
Examining data/gwyddion-2.56/libgwyddion/gwydebugobjects.h
Examining data/gwyddion-2.56/libgwyddion/gwyserializable.c
Examining data/gwyddion-2.56/libgwyddion/gwysiunit.c
Examining data/gwyddion-2.56/libgwyddion/gwycontainer.h
Examining data/gwyddion-2.56/libgwyddion/gwyrandgenset.c
Examining data/gwyddion-2.56/libgwyddion/gwyrandgenset.h
Examining data/gwyddion-2.56/libgwyddion/gwycontainer.c
Examining data/gwyddion-2.56/libgwyddion/gwyddiontypes.h
Examining data/gwyddion-2.56/libgwyddion/gwyddion.c
Examining data/gwyddion-2.56/libgwyddion/gwyomp.h
Examining data/gwyddion-2.56/libgwyddion/gwynlfitpreset.h
Examining data/gwyddion-2.56/libgwyddion/gwysiunit.h
Examining data/gwyddion-2.56/libgwyddion/gwyversion.h
Examining data/gwyddion-2.56/libgwyddion/gwyversion.c
Examining data/gwyddion-2.56/libgwyddion/gwyutils.h
Examining data/gwyddion-2.56/libgwyddion/gwyfdcurvepreset.h
Examining data/gwyddion-2.56/libgwyddion/gwyresource.c
Examining data/gwyddion-2.56/libgwyddion/gwynlfit.c
Examining data/gwyddion-2.56/libgwyddion/gwynlfitpreset.c
Examining data/gwyddion-2.56/libgwyddion/gwyddionenums.h
Examining data/gwyddion-2.56/libgwyddion/gwymath.h
Examining data/gwyddion-2.56/libdraw/gwydrawenums.h
Examining data/gwyddion-2.56/libdraw/gwyrgba.c
Examining data/gwyddion-2.56/libdraw/gwydrawtypes.c
Examining data/gwyddion-2.56/libdraw/gwyrgba.h
Examining data/gwyddion-2.56/libdraw/gwyselection.c
Examining data/gwyddion-2.56/libdraw/gwyglmaterial.c
Examining data/gwyddion-2.56/libdraw/gwydraw.c
Examining data/gwyddion-2.56/libdraw/gwygradient.h
Examining data/gwyddion-2.56/libdraw/gwypixfield.h
Examining data/gwyddion-2.56/libdraw/gwypixfield.c
Examining data/gwyddion-2.56/libdraw/gwydrawinternal.h
Examining data/gwyddion-2.56/libdraw/gwydraw.h
Examining data/gwyddion-2.56/libdraw/gwydrawtypes.h
Examining data/gwyddion-2.56/libdraw/gwyselection.h
Examining data/gwyddion-2.56/libdraw/gwygradient.c
Examining data/gwyddion-2.56/libdraw/gwyglmaterial.h
Examining data/gwyddion-2.56/libgwydgets/gwycheckboxes.c
Examining data/gwyddion-2.56/libgwydgets/gwyscitext.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphselections.h
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongraphpoint.h
Examining data/gwyddion-2.56/libgwydgets/gwysensitivitygroup.c
Examining data/gwyddion-2.56/libgwydgets/gwyaxis.c
Examining data/gwyddion-2.56/libgwydgets/gwycoloraxis.h
Examining data/gwyddion-2.56/libgwydgets/gwygrainvaluemenu.h
Examining data/gwyddion-2.56/libgwydgets/gwystatusbar.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphdata.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphwindowmeasuredialog.c
Examining data/gwyddion-2.56/libgwydgets/gwyshader.c
Examining data/gwyddion-2.56/libgwydgets/gwyinventorystore.h
Examining data/gwyddion-2.56/libgwydgets/gwypixmaplayer.h
Examining data/gwyddion-2.56/libgwydgets/gwyhmarkerbox.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphmodel.h
Examining data/gwyddion-2.56/libgwydgets/gwydgets.c
Examining data/gwyddion-2.56/libgwydgets/gwycheckboxes.h
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongraph1darea.c
Examining data/gwyddion-2.56/libgwydgets/gwyadjustbar.h
Examining data/gwyddion-2.56/libgwydgets/gwyoptionmenus.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphcurvemodel.c
Examining data/gwyddion-2.56/libgwydgets/gwyvruler.c
Examining data/gwyddion-2.56/libgwydgets/gwymarkerbox.c
Examining data/gwyddion-2.56/libgwydgets/gwylayer-mask.h
Examining data/gwyddion-2.56/libgwydgets/gwyvectorlayer.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphcorner.c
Examining data/gwyddion-2.56/libgwydgets/gwydgetmarshals.h
Examining data/gwyddion-2.56/libgwydgets/gwylayer-basic.h
Examining data/gwyddion-2.56/libgwydgets/gwyvectorlayer.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphcorner.h
Examining data/gwyddion-2.56/libgwydgets/gwyhmarkerbox.c
Examining data/gwyddion-2.56/libgwydgets/gwydgetenums.h
Examining data/gwyddion-2.56/libgwydgets/gwycoloraxis.c
Examining data/gwyddion-2.56/libgwydgets/gwynullstore.h
Examining data/gwyddion-2.56/libgwydgets/gwy3dview.h
Examining data/gwyddion-2.56/libgwydgets/gwycurve.h
Examining data/gwyddion-2.56/libgwydgets/gwygrapharea.h
Examining data/gwyddion-2.56/libgwydgets/gwystatusbar.c
Examining data/gwyddion-2.56/libgwydgets/gwy3dsetup.c
Examining data/gwyddion-2.56/libgwydgets/gwydataview.c
Examining data/gwyddion-2.56/libgwydgets/gwyruler.h
Examining data/gwyddion-2.56/libgwydgets/gwylayer-basic.c
Examining data/gwyddion-2.56/libgwydgets/gwy3dlabel.h
Examining data/gwyddion-2.56/libgwydgets/gwyaxisdialog.h
Examining data/gwyddion-2.56/libgwydgets/gwyoptionmenus.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphlabeldialog.c
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongraphline.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphdata.h
Examining data/gwyddion-2.56/libgwydgets/gwymarkerbox.h
Examining data/gwyddion-2.56/libgwydgets/gwyinventorystore.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphareadialog.c
Examining data/gwyddion-2.56/libgwydgets/gwydgetenums.c
Examining data/gwyddion-2.56/libgwydgets/gwycolorbutton.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphexport.c
Examining data/gwyddion-2.56/libgwydgets/gwydataviewlayer.h
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongraphzoom.h
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongraphline.c
Examining data/gwyddion-2.56/libgwydgets/gwydgettypes.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphcurvemodel.h
Examining data/gwyddion-2.56/libgwydgets/gwyadjustbar.c
Examining data/gwyddion-2.56/libgwydgets/gwydgets.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphlabel.h
Examining data/gwyddion-2.56/libgwydgets/gwycombobox.h
Examining data/gwyddion-2.56/libgwydgets/gwydgetutils.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphcurves.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphmodel.c
Examining data/gwyddion-2.56/libgwydgets/gwyscitext.c
Examining data/gwyddion-2.56/libgwydgets/gwycurve.c
Examining data/gwyddion-2.56/libgwydgets/gwyvruler.h
Examining data/gwyddion-2.56/libgwydgets/gwyradiobuttons.h
Examining data/gwyddion-2.56/libgwydgets/gwydatawindow.h
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongraphpoint.c
Examining data/gwyddion-2.56/libgwydgets/gwygraph.c
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongrapharea.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphbasics.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphlabel.c
Examining data/gwyddion-2.56/libgwydgets/gwyaxisdialog.c
Examining data/gwyddion-2.56/libgwydgets/gwystock.c
Examining data/gwyddion-2.56/libgwydgets/gwygrapharea.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphcurves.c
Examining data/gwyddion-2.56/libgwydgets/gwystock.h
Examining data/gwyddion-2.56/libgwydgets/gwysensitivitygroup.h
Examining data/gwyddion-2.56/libgwydgets/gwyhruler.c
Examining data/gwyddion-2.56/libgwydgets/gwynullstore.c
Examining data/gwyddion-2.56/libgwydgets/gwypixmaplayer.c
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongraphzoom.c
Examining data/gwyddion-2.56/libgwydgets/gwydataview.h
Examining data/gwyddion-2.56/libgwydgets/gwydgetmarshals.c
Examining data/gwyddion-2.56/libgwydgets/gwy3dwindow.c
Examining data/gwyddion-2.56/libgwydgets/gwyruler.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphareadialog.h
Examining data/gwyddion-2.56/libgwydgets/gwygrainvaluemenu.c
Examining data/gwyddion-2.56/libgwydgets/gwyaxis.h
Examining data/gwyddion-2.56/libgwydgets/gwydatawindow.c
Examining data/gwyddion-2.56/libgwydgets/gwydgetutils.h
Examining data/gwyddion-2.56/libgwydgets/gwycombobox.c
Examining data/gwyddion-2.56/libgwydgets/gwy3dwindow.h
Examining data/gwyddion-2.56/libgwydgets/gwyshader.h
Examining data/gwyddion-2.56/libgwydgets/gwygraph.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphlabeldialog.h
Examining data/gwyddion-2.56/libgwydgets/gwy3dlabel.c
Examining data/gwyddion-2.56/libgwydgets/gwy3dview.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphwindowmeasuredialog.h
Examining data/gwyddion-2.56/libgwydgets/gwylayer-mask.c
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongraph1darea.h
Examining data/gwyddion-2.56/libgwydgets/gwyselectiongrapharea.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphwindow.c
Examining data/gwyddion-2.56/libgwydgets/gwygraphwindow.h
Examining data/gwyddion-2.56/libgwydgets/gwydgettypes.h
Examining data/gwyddion-2.56/libgwydgets/gwyradiobuttons.c
Examining data/gwyddion-2.56/libgwydgets/gwyhruler.h
Examining data/gwyddion-2.56/libgwydgets/gwygraphbasics.h
Examining data/gwyddion-2.56/libgwydgets/gwycolorbutton.h
Examining data/gwyddion-2.56/libgwydgets/gwydataviewlayer.c
Examining data/gwyddion-2.56/libgwydgets/gwy3dsetup.h
FINAL RESULTS:
data/gwyddion-2.56/app/filelist.c:1492:5: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod(fnm, 0600);
data/gwyddion-2.56/modules/tools/icolorange.c:747:9: [5] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is high; the length parameter
appears to be a constant, instead of computing the number of characters
left.
strncat(buf, "/range-type", sizeof(buf)-1);
data/gwyddion-2.56/app/app.c:2392:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(key, prefix);
data/gwyddion-2.56/app/app.c:2462:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(key, prefix);
data/gwyddion-2.56/app/gwyplaintool.c:286:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sigdetail, ITEM_CHANGED);
data/gwyddion-2.56/app/gwyplaintool.c:287:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sigdetail + sizeof(ITEM_CHANGED)-1, data_key);
data/gwyddion-2.56/app/gwytool.c:155:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(key, klass->prefix);
data/gwyddion-2.56/app/gwytool.c:218:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(key, klass->prefix);
data/gwyddion-2.56/app/gwytool.c:366:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(key, klass->prefix);
data/gwyddion-2.56/app/help.c:82:23: [4] (shell) ShellExecute:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status = (INT_PTR)ShellExecute(NULL, NULL, uri, NULL, NULL, SW_SHOWNORMAL);
data/gwyddion-2.56/gwyddion/remote-win32.c:147:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(((LPSTR)(pDropFiles) + iCurBytePos), fullFilename);
data/gwyddion-2.56/libgwyddion/gwyentities.c:318:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(amp, ent);
data/gwyddion-2.56/libgwyddion/gwyutils.c:201:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(q, pp);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1982:14: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
retval = vfprintf(file, format, args);
data/gwyddion-2.56/libgwyddion/gwyutils.h:130:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define gwy_fprintf fprintf
data/gwyddion-2.56/libgwydgets/gwy3dwindow.c:806:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(detail, property);
data/gwyddion-2.56/utils/dump-modules.c:148:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(p, authors);
data/gwyddion-2.56/app/glmaterial-editor.c:362:19: [3] (random) g_rand_double_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
data[i] = g_rand_double_range(rng, -0.2, 0.2);
data/gwyddion-2.56/app/glmaterial-editor.c:370:19: [3] (random) g_rand_double_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
data[i] = g_rand_double_range(rng, -0.07, 0.07);
data/gwyddion-2.56/app/meta.c:629:13: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (g_random_int() % 4 == 0)
data/gwyddion-2.56/app/meta.c:630:35: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
s = g_strdup(whatever[g_random_int() % G_N_ELEMENTS(whatever)]);
data/gwyddion-2.56/gwyddion/gwyddion.c:255:25: [3] (buffer) g_get_home_dir:
This function is synonymous with 'getenv("HOME")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
else if ((cwd = g_get_home_dir())
data/gwyddion-2.56/gwyddion/tips.c:545:19: [3] (random) g_random_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
guint j = g_random_int_range(0, n-i);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:166:29: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
x = (upper - lower)*g_rand_double(randgen->rng) + lower;
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:197:13: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
x = g_rand_double(randgen->rng);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:233:24: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
x = -1.0 + 2.0*g_rand_double(randgen->rng);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:234:24: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
y = -1.0 + 2.0*g_rand_double(randgen->rng);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:270:9: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
x = g_rand_double(randgen->rng);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:276:30: [3] (random) g_rand_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
randgen->spare_exp = g_rand_int(randgen->rng);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:315:13: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
x = g_rand_double(randgen->rng);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:346:25: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return 1.0 + range*(g_rand_double(rng) - g_rand_double(rng));
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:346:46: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return 1.0 + range*(g_rand_double(rng) - g_rand_double(rng));
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:365:12: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return g_rand_double(rngset->rngs[i].rng);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:384:12: [3] (random) g_rand_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return g_rand_int(rngset->rngs[i].rng);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:433:30: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
indices[k] = g_rand_int_range(rng, 0, n);
data/gwyddion-2.56/libgwyddion/gwyrandgenset.c:452:17: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
j = g_rand_int_range(rng, 0, n-k);
data/gwyddion-2.56/libgwyddion/gwyutils.c:848:15: [3] (buffer) g_get_home_dir:
This function is synonymous with 'getenv("HOME")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
homedir = g_get_home_dir();
data/gwyddion-2.56/libgwyddion/gwyutils.c:850:19: [3] (buffer) g_get_tmp_dir:
This function is synonymous with 'getenv("TMP")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
homedir = g_get_tmp_dir();
data/gwyddion-2.56/libgwydgets/gwyinventorystore.c:120:20: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
store->stamp = g_random_int();
data/gwyddion-2.56/libgwydgets/gwynullstore.c:102:20: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
store->stamp = g_random_int();
data/gwyddion-2.56/libprocess/natural.c:1282:3: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand ( time(NULL) );
data/gwyddion-2.56/libprocess/surface.c:1348:27: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
grid[i] = g_rand_int_range(rng, 1, grid[i]+1);
data/gwyddion-2.56/libprocess/surface.c:1405:27: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
grid[i] = g_rand_int_range(rng, 1, grid[i]+1);
data/gwyddion-2.56/modules/file/formats3d.c:799:30: [3] (random) g_rand_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
ranval = g_rand_int(rng);
data/gwyddion-2.56/modules/file/igorfile.c:1043:47: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
g_snprintf(bname, sizeof(bname), "gwy%u", g_random_int());
data/gwyddion-2.56/modules/plugin-proxy.c:1199:34: [3] (buffer) g_get_tmp_dir:
This function is synonymous with 'getenv("TMP")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
*filename = g_build_filename(g_get_tmp_dir(), buf, NULL);
data/gwyddion-2.56/modules/process/anneal_synth.c:233:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/anneal_synth.c:802:41: [3] (random) g_rand_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random_numbers[i] = g_rand_int(rng);
data/gwyddion-2.56/modules/process/anneal_synth.c:806:29: [3] (random) g_rand_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
rbits = g_rand_int(rng);
data/gwyddion-2.56/modules/process/anneal_synth.c:1384:38: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
guint ll = (l == 7 ? 7 : g_rand_int_range(rng, l, 8));
data/gwyddion-2.56/modules/process/anneal_synth.c:1441:16: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
d[k] = g_rand_double(rng);
data/gwyddion-2.56/modules/process/bdep_synth.c:218:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/bdep_synth.c:640:19: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
guint k = g_rand_int_range(rng_k, 0, n);
data/gwyddion-2.56/modules/process/bdep_synth.c:642:31: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
? hnoise*g_rand_double(rng_height) + 1.0 - hnoise
data/gwyddion-2.56/modules/process/col_synth.c:262:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/cpde_synth.c:240:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/cpde_synth.c:861:16: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
d[k] = g_rand_double(rng);
data/gwyddion-2.56/modules/process/deposit_synth.c:227:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/deposit_synth.c:980:37: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
xpos = CLAMP((gint)(disize+(g_rand_double(rng)*(xres-2*(gint)(disize+1))) + 1), 0, xres-1);
data/gwyddion-2.56/modules/process/deposit_synth.c:981:37: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
ypos = CLAMP((gint)(disize+(g_rand_double(rng)*(yres-2*(gint)(disize+1))) + 1), 0, yres-1);
data/gwyddion-2.56/modules/process/deposit_synth.c:1043:38: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
xpos = CLAMP(disize+(g_rand_double(rng)*(xres-2*(gint)(disize+1))) + 1, 0, xres-1);
data/gwyddion-2.56/modules/process/deposit_synth.c:1044:38: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
ypos = CLAMP(disize+(g_rand_double(rng)*(yres-2*(gint)(disize+1))) + 1, 0, yres-1);
data/gwyddion-2.56/modules/process/diff_synth.c:283:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/diff_synth.c:901:17: [3] (random) g_rand_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
spare = g_rand_int(rng);
data/gwyddion-2.56/modules/process/diff_synth.c:924:12: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
&& g_rand_double(rng) >= schwoebel)
data/gwyddion-2.56/modules/process/diff_synth.c:927:9: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (g_rand_double(rng) >= p_break[p->nneigh])
data/gwyddion-2.56/modules/process/diff_synth.c:950:13: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
p.col = g_rand_int_range(dstate->rng, 0, dstate->xres);
data/gwyddion-2.56/modules/process/diff_synth.c:951:13: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
p.row = g_rand_int_range(dstate->rng, 0, dstate->yres);
data/gwyddion-2.56/modules/process/diff_synth.c:978:33: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (ps == 1.0 || (ps && g_rand_double(rng) < ps))
data/gwyddion-2.56/modules/process/diff_synth.c:1010:33: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (ps == 1.0 || (ps && g_rand_double(rng) < ps))
data/gwyddion-2.56/modules/process/disc_synth.c:654:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/disc_synth.c:925:15: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
d.x = g_rand_double(rng)*xres;
data/gwyddion-2.56/modules/process/disc_synth.c:926:15: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
d.y = g_rand_double(rng)*yres;
data/gwyddion-2.56/modules/process/displfield.c:225:25: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args.seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/displfield.c:464:35: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
gtk_adjustment_set_value(adj, g_random_int() & 0x7fffffff);
data/gwyddion-2.56/modules/process/displfield.c:887:25: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
data[giter.k] = g_rand_double(rng) - 0.5;
data/gwyddion-2.56/modules/process/displfield.c:1010:19: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
row = g_rand_int_range(rng, -1, yres);
data/gwyddion-2.56/modules/process/displfield.c:1011:19: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
col = g_rand_int_range(rng, -length, xres + length);
data/gwyddion-2.56/modules/process/displfield.c:1012:39: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
len = GWY_ROUND(length + (g_rand_double(rng)
data/gwyddion-2.56/modules/process/displfield.c:1013:41: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
+ g_rand_double(rng)
data/gwyddion-2.56/modules/process/displfield.c:1014:41: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
+ g_rand_double(rng) - 1.5)*length/5.0);
data/gwyddion-2.56/modules/process/displfield.c:1024:24: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
value = sigma*(g_rand_double(rng) - 0.5);
data/gwyddion-2.56/modules/process/domain_synth.c:239:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/domain_synth.c:776:18: [3] (random) g_rand_boolean:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
*u = g_rand_boolean(rng) ? 1 : -1;
data/gwyddion-2.56/modules/process/domain_synth.c:960:37: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random_numbers[i] = g_rand_double(rng);
data/gwyddion-2.56/modules/process/fbm_synth.c:226:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/fbm_synth.c:696:33: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
gdouble r = 1.0/pow(g_rand_double(rng), 1.0/args->power) - 1.0;
data/gwyddion-2.56/modules/process/fbm_synth.c:697:17: [3] (random) g_rand_boolean:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (g_rand_boolean(rng))
data/gwyddion-2.56/modules/process/fft_synth.c:256:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/fft_synth.c:944:17: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
re[i] = g_rand_double(rng);
data/gwyddion-2.56/modules/process/fft_synth.c:945:17: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
im[i] = g_rand_double(rng);
data/gwyddion-2.56/modules/process/fibre_synth.c:335:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/lat_synth.c:126:13: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
gdouble random; /* a random number in [0,1], generated to be always the
data/gwyddion-2.56/modules/process/lat_synth.c:311:60: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
gdouble random);
data/gwyddion-2.56/modules/process/lat_synth.c:469:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/lat_synth.c:1423:17: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
pos.x = g_rand_double(rng)*(extwsq - 2.0*EPS) + EPS;
data/gwyddion-2.56/modules/process/lat_synth.c:1424:17: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
pos.y = g_rand_double(rng)*(exthsq - 2.0*EPS) + EPS;
data/gwyddion-2.56/modules/process/lat_synth.c:1425:49: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (place_point_to_square(vstate, &pos, g_rand_double(rng)))
data/gwyddion-2.56/modules/process/lat_synth.c:1446:42: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
obj->pos.x = (1.0 - 2.0*EPS)*g_rand_double(rng) + EPS + j;
data/gwyddion-2.56/modules/process/lat_synth.c:1447:42: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
obj->pos.y = (1.0 - 2.0*EPS)*g_rand_double(rng) + EPS + i;
data/gwyddion-2.56/modules/process/lat_synth.c:1448:27: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
obj->random = g_rand_double(rng);
data/gwyddion-2.56/modules/process/lat_synth.c:1664:30: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
pos.x += 0.0001*(g_rand_double(rng) - 0.00005);
data/gwyddion-2.56/modules/process/lat_synth.c:1665:30: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
pos.y += 0.0001*(g_rand_double(rng) - 0.00005);
data/gwyddion-2.56/modules/process/lat_synth.c:1669:53: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
place_point_to_square(vstate, &pos, g_rand_double(rng));
data/gwyddion-2.56/modules/process/lat_synth.c:1815:30: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
pos.x += 0.0001*(g_rand_double(rng) - 0.00005);
data/gwyddion-2.56/modules/process/lat_synth.c:1816:30: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
pos.y += 0.0001*(g_rand_double(rng) - 0.00005);
data/gwyddion-2.56/modules/process/lat_synth.c:1817:49: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
place_point_to_square(vstate, &pos, g_rand_double(rng));
data/gwyddion-2.56/modules/process/lat_synth.c:2051:28: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
data[giter.k] = q*(g_rand_double(rng) - 0.5);
data/gwyddion-2.56/modules/process/lat_synth.c:2152:65: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
place_point_to_square(vstate, &pos, oldobj->random);
data/gwyddion-2.56/modules/process/lat_synth.c:2156:65: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
&oldobj->pos, oldobj->random);
data/gwyddion-2.56/modules/process/lat_synth.c:2243:39: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
obj->rlxrandom = obj->random;
data/gwyddion-2.56/modules/process/lno_synth.c:354:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/neuraldata.h:435:19: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
*p = (2.0*g_rand_double(myrng) - 1.0)*0.1;
data/gwyddion-2.56/modules/process/neuraldata.h:440:19: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
*p = (2.0*g_rand_double(myrng) - 1.0)*0.1;
data/gwyddion-2.56/modules/process/noise_synth.c:257:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/obj_synth.c:415:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/obj_synth.c:1009:14: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
id = g_rand_int_range(rngid, 0, ncells - k);
data/gwyddion-2.56/modules/process/obj_synth.c:1066:27: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
j = from + xoff + g_rand_int_range(rngid, 0, to - from);
data/gwyddion-2.56/modules/process/obj_synth.c:1074:27: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
i = from + yoff + g_rand_int_range(rngid, 0, to - from);
data/gwyddion-2.56/modules/process/pat_synth.c:314:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/pat_synth.c:815:28: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
data[giter.k] = q*(g_rand_double(rng) - 0.5);
data/gwyddion-2.56/modules/process/phase_synth.c:466:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/phase_synth.c:561:28: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
phi = 2.0*G_PI*g_rand_double(rng);
data/gwyddion-2.56/modules/process/phase_synth.c:562:17: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
f = g_rand_double(rng);
data/gwyddion-2.56/modules/process/pileup_synth.c:346:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/pileup_synth.c:902:14: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
id = g_rand_int_range(rngid, 0, ncells - k);
data/gwyddion-2.56/modules/process/pileup_synth.c:928:27: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
j = from + xoff + g_rand_int_range(rngid, 0, to - from);
data/gwyddion-2.56/modules/process/pileup_synth.c:933:27: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
i = from + yoff + g_rand_int_range(rngid, 0, to - from);
data/gwyddion-2.56/modules/process/relate.c:870:19: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
guint j = g_rand_int_range(rng, 0, n);
data/gwyddion-2.56/modules/process/roddeposit_synth.c:270:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/process/roddeposit_synth.c:1391:38: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
xpos = CLAMP(disize+(g_rand_double(rng)*(xres-2*(gint)(disize+1))) + 1, 0, xres-1);
data/gwyddion-2.56/modules/process/roddeposit_synth.c:1392:38: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
ypos = CLAMP(disize+(g_rand_double(rng)*(yres-2*(gint)(disize+1))) + 1, 0, yres-1);
data/gwyddion-2.56/modules/process/roddeposit_synth.c:1403:30: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
angle = G_PI*g_rand_double(rng);
data/gwyddion-2.56/modules/process/semsim.c:484:58: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
gdouble r = sigma_r2*sqrt(-log(1.0 - g_rand_double(rng)));
data/gwyddion-2.56/modules/process/semsim.c:485:44: [3] (random) g_rand_double:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
gdouble phi = 2.0*G_PI*g_rand_double(rng);
data/gwyddion-2.56/modules/process/synth.h:611:35: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
gtk_adjustment_set_value(adj, g_random_int() & 0x7fffffff);
data/gwyddion-2.56/modules/process/wave_synth.c:285:22: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
args->seed = g_random_int() & 0x7fffffff;
data/gwyddion-2.56/modules/volume/volume_kmeans.c:416:13: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
i = g_rand_int_range(rand, 0, xres);
data/gwyddion-2.56/modules/volume/volume_kmeans.c:417:13: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
j = g_rand_int_range(rand, 0, yres);
data/gwyddion-2.56/modules/volume/volume_kmedians.c:381:13: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
i = g_rand_int_range(rand, 0, xres);
data/gwyddion-2.56/modules/volume/volume_kmedians.c:382:13: [3] (random) g_rand_int_range:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
j = g_rand_int_range(rand, 0, yres);
data/gwyddion-2.56/app/app.c:2404:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/x");
data/gwyddion-2.56/app/app.c:2406:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/y");
data/gwyddion-2.56/app/app.c:2408:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/mconf");
data/gwyddion-2.56/app/app.c:2415:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/width");
data/gwyddion-2.56/app/app.c:2417:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/height");
data/gwyddion-2.56/app/app.c:2470:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/x");
data/gwyddion-2.56/app/app.c:2472:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/y");
data/gwyddion-2.56/app/app.c:2474:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/mconf");
data/gwyddion-2.56/app/app.c:2476:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/width");
data/gwyddion-2.56/app/app.c:2478:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/position/height");
data/gwyddion-2.56/app/data-browser-aux.c:128:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return atoi(s);
data/gwyddion-2.56/app/data-browser-aux.c:150:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return atoi(s);
data/gwyddion-2.56/app/data-browser-aux.c:191:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return atoi(s);
data/gwyddion-2.56/app/data-browser-aux.c:233:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return atoi(s);
data/gwyddion-2.56/app/data-browser-aux.c:258:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i = atoi(s);
data/gwyddion-2.56/app/data-browser-aux.c:1696:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key_to + tlen, name, strlen(name)+1);
data/gwyddion-2.56/app/filelist.c:122:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
GtkWidget *open;
data/gwyddion-2.56/app/filelist.c:272:54: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
gtk_box_pack_start(GTK_BOX(buttonbox), gcontrols.open, TRUE, TRUE, 0);
data/gwyddion-2.56/app/filelist.c:273:60: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
gtk_tooltips_set_tip(gwy_app_get_tooltips(), gcontrols.open,
data/gwyddion-2.56/app/filelist.c:275:40: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
g_signal_connect_swapped(gcontrols.open, "clicked",
data/gwyddion-2.56/app/filelist.c:278:40: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
gtk_widget_set_sensitive(gcontrols.open,
data/gwyddion-2.56/app/filelist.c:385:44: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
gtk_widget_set_sensitive(controls->open,
data/gwyddion-2.56/app/filelist.c:390:44: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
gtk_widget_set_sensitive(controls->open, has_rows);
data/gwyddion-2.56/app/filelist.c:1168:27: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rf->thumb_mtime = atol(option);
data/gwyddion-2.56/app/filelist.c:1171:25: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rf->file_size = atol(option);
data/gwyddion-2.56/app/filelist.c:1174:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rf->image_width = atoi(option);
data/gwyddion-2.56/app/filelist.c:1177:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rf->image_height = atoi(option);
data/gwyddion-2.56/app/gwymoduleutils-file.h:180:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(gfloat));
data/gwyddion-2.56/app/gwymoduleutils-file.h:197:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(gfloat));
data/gwyddion-2.56/app/gwymoduleutils-file.h:214:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(gdouble));
data/gwyddion-2.56/app/gwymoduleutils-file.h:235:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(gdouble));
data/gwyddion-2.56/app/gwyplaintool.c:280:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
plain_tool->id = atoi(data_key + 1);
data/gwyddion-2.56/app/gwyplaintool.c:301:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(sigdetail + len-4, "mask");
data/gwyddion-2.56/app/gwyplaintool.c:315:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(sigdetail + len-4, "show");
data/gwyddion-2.56/app/gwytool.c:156:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/dialog");
data/gwyddion-2.56/app/gwytool.c:219:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/dialog");
data/gwyddion-2.56/app/gwytool.c:367:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len, "/dialog");
data/gwyddion-2.56/gwyddion/gwyddion.c:604:20: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
if (!(buflen = MultiByteToWideChar(CP_ACP, 0, p, n, NULL, 0)))
data/gwyddion-2.56/gwyddion/gwyddion.c:607:10: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
if (!MultiByteToWideChar(CP_ACP, 0, p, n, w, buflen+1)) {
data/gwyddion-2.56/gwyddion/mac_integration.c:251:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/gwyddion-2.56/gwyddion/toolbox-spec.c:87:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
vi = atoi(attval);
data/gwyddion-2.56/libdraw/gwygradient.c:336:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pdata + i*rowstride, pdata, rowstride);
data/gwyddion-2.56/libdraw/gwyrgba.c:376:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len + 1, "green");
data/gwyddion-2.56/libdraw/gwyrgba.c:378:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len + 1, "blue");
data/gwyddion-2.56/libdraw/gwyrgba.c:380:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len + 1, "alpha");
data/gwyddion-2.56/libgwyddion/gwycontainer.c:2415:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(v+1, k, j);
data/gwyddion-2.56/libgwyddion/gwycontainer.c:2416:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(v+j+1, "\" object ", sizeof("\" object ") - 1);
data/gwyddion-2.56/libgwyddion/gwyentities.c:300:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pos, text, i + 1);
data/gwyddion-2.56/libgwyddion/gwyentities.c:326:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pos, text, end - text + 1);
data/gwyddion-2.56/libgwyddion/gwymacros.h:64:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((dest), (source), (n)*sizeof((dest)[0]))
data/gwyddion-2.56/libgwyddion/gwymd5.c:128:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, buf, len);
data/gwyddion-2.56/libgwyddion/gwymd5.c:131:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, buf, t);
data/gwyddion-2.56/libgwyddion/gwymd5.c:142:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctx->in, buf, 64);
data/gwyddion-2.56/libgwyddion/gwymd5.c:150:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctx->in, buf, len);
data/gwyddion-2.56/libgwyddion/gwymd5.c:189:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((guint32*)ctx->in + 14, ctx->bits, 2*sizeof(guint32));
data/gwyddion-2.56/libgwyddion/gwymd5.c:193:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest, ctx->buf, 16);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:528:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buffer->data + position, &value, sizeof(guint32));
data/gwyddion-2.56/libgwyddion/gwyserializable.c:1048:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&value, buffer + *position, sizeof(gint32));
data/gwyddion-2.56/libgwyddion/gwyserializable.c:1625:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&value, buffer + *position, sizeof(gint64));
data/gwyddion-2.56/libgwyddion/gwyserializable.c:1703:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&value, buffer + *position, sizeof(gdouble));
data/gwyddion-2.56/libgwyddion/gwyutils.c:194:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(q, pp, p - pp);
data/gwyddion-2.56/libgwyddion/gwyutils.c:196:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(q, replacement, rlen);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1173:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, replacement, repllen);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1201:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, replacement, repllen);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1208:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, oldcopy + ucount, len - ucount);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1240:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(str->str + pos + (repllen - oldlen),
data/gwyddion-2.56/libgwyddion/gwyutils.c:1245:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(str->str + pos, replacement, repllen);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1253:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newstr, str->str, p - str->str);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1259:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newp, replacement, repllen);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1268:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newp, p + oldlen, (q - p) - oldlen);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1272:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newp, p + oldlen, str->len - oldlen - (p - str->str));
data/gwyddion-2.56/libgwyddion/gwyutils.c:1338:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, source, item_size*nitems);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1970:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return fopen(filename, mode);
data/gwyddion-2.56/libgwyddion/gwyutils.h:129:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define gwy_fopen fopen
data/gwyddion-2.56/libgwydgets/gwy3dwindow.c:805:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(detail, "notify::");
data/gwyddion-2.56/libgwydgets/gwylayer-basic.c:704:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + len + 1, "max");
data/gwyddion-2.56/libgwydgets/gwylayer-basic.c:833:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(detailed_signal + len, "max");
data/gwyddion-2.56/libgwydgets/gwylayer-mask.c:290:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(detailed_signal + len, "green");
data/gwyddion-2.56/libgwydgets/gwylayer-mask.c:294:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(detailed_signal + len, "blue");
data/gwyddion-2.56/libgwydgets/gwylayer-mask.c:298:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(detailed_signal + len, "alpha");
data/gwyddion-2.56/libgwydgets/gwystock.c:213:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size = atoi(sz);
data/gwyddion-2.56/libprocess/gwycalibration.c:273:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ndata = atoi(value);
data/gwyddion-2.56/libprocess/gwygrainvalue.c:780:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.power_xy = atoi(value);
data/gwyddion-2.56/libprocess/gwygrainvalue.c:782:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.power_z = atoi(value);
data/gwyddion-2.56/libprocess/gwygrainvalue.c:784:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.flags |= GWY_GRAIN_VALUE_SAME_UNITS*(!!atoi(value));
data/gwyddion-2.56/libprocess/gwygrainvalue.c:786:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.flags |= GWY_GRAIN_VALUE_IS_ANGLE*(!!atoi(value));
data/gwyddion-2.56/libprocess/gwygrainvalue.c:1417:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(results[i], results[j], (ngrains + 1)*sizeof(gdouble));
data/gwyddion-2.56/libprocess/level.c:543:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tdata + i*txres + xbw, data,
data/gwyddion-2.56/libprocess/level.c:546:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tdata + (yres + ybw + i)*txres + xbw, data + xres*(yres - 1),
data/gwyddion-2.56/libprocess/morph_lib.c:522:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
gint **open;
data/gwyddion-2.56/libprocess/morph_lib.c:529:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!open)
data/gwyddion-2.56/libprocess/morph_lib.c:542:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
shared(image,open,tip0,xres,yres,txres,tyres,xc,yc,thresh,use_edges,next_row,set_fraction,pcancelled)
data/gwyddion-2.56/libprocess/morph_lib.c:557:39: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (image[jxp][ixp] - open[jxp][ixp] > thresh) {
data/gwyddion-2.56/libprocess/morph_lib.c:571:32: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_gwy_morph_lib_ifreematrix(open);
data/gwyddion-2.56/libprocess/stats_uncertainty.c:3026:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buffer, datapos, width*height*sizeof(gdouble));
data/gwyddion-2.56/libprocess/stats_uncertainty.c:3027:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ubuffer, uncpos, width*height*sizeof(gdouble));
data/gwyddion-2.56/libprocess/stats_uncertainty.c:3031:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buffer + i*width, datapos + i*dfield->xres,
data/gwyddion-2.56/libprocess/stats_uncertainty.c:3033:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ubuffer + i*width, uncpos + i*uncz_field->xres,
data/gwyddion-2.56/modules/file/afmw-spec.c:512:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, s+6, 4);
data/gwyddion-2.56/modules/file/afmw-spec.c:514:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 5, s+3, 2);
data/gwyddion-2.56/modules/file/afmw-spec.c:516:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 8, s+0, 2);
data/gwyddion-2.56/modules/file/afmw-spec.c:522:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 11, s, 8);
data/gwyddion-2.56/modules/file/afmw-spec.c:534:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
finfo->id = atoi(s);
data/gwyddion-2.56/modules/file/alicona.c:511:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
guint hiplaneno = (guint)atoi(hitag->value);
data/gwyddion-2.56/modules/file/alicona.c:512:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
guint loplaneno = (guint)atoi(lotag->value);
data/gwyddion-2.56/modules/file/alicona.c:549:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
guint planeno = (guint)atoi(tag->value);
data/gwyddion-2.56/modules/file/alicona.c:665:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
afile->ntags = (guint)atoi(afile->counter->value);
data/gwyddion-2.56/modules/file/alicona.c:727:22: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*retval = (guint)atol(tag->value);
data/gwyddion-2.56/modules/file/anasys_xml.c:316:48: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
resolution_x = (gint32)atoi((char *)key);
data/gwyddion-2.56/modules/file/anasys_xml.c:318:48: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
resolution_y = (gint32)atoi((char *)key);
data/gwyddion-2.56/modules/file/anasys_xml.c:618:42: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numDataPoints = (guint32)atoi((char*)key);
data/gwyddion-2.56/modules/file/anfatec.c:169:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(paramfile + len-removed, ".txt");
data/gwyddion-2.56/modules/file/anfatec.c:177:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(paramfile + len-removed, ".TXT");
data/gwyddion-2.56/modules/file/anfatec.c:367:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(g_hash_table_lookup(hash, "xPixel"));
data/gwyddion-2.56/modules/file/anfatec.c:368:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(g_hash_table_lookup(hash, "xPixel"));
data/gwyddion-2.56/modules/file/attocube.c:195:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(g_hash_table_lookup(hash, "x-pixels"));
data/gwyddion-2.56/modules/file/attocube.c:196:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(g_hash_table_lookup(hash, "y-pixels"));
data/gwyddion-2.56/modules/file/bcrfile.c:355:12: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atol(s);
data/gwyddion-2.56/modules/file/bcrfile.c:361:12: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atol(s);
data/gwyddion-2.56/modules/file/bcrfile.c:367:23: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
intelmode = !!atol(s);
data/gwyddion-2.56/modules/file/codevfile.c:197:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
|| !(xres = atoi(fields[1]))
data/gwyddion-2.56/modules/file/codevfile.c:198:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
|| !(yres = atoi(fields[2]))
data/gwyddion-2.56/modules/file/codevfile.c:240:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
no_data_value = atoi(fields[fi]);
data/gwyddion-2.56/modules/file/createc.c:192:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
#define HASH_INT(key, var, err) HASH_GET(key, var, atoi, err)
data/gwyddion-2.56/modules/file/createc.c:196:71: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
#define HASH_INT2(key1, key2, var, err) HASH_GET2(key1, key2, var, atoi, err)
data/gwyddion-2.56/modules/file/createc.c:272:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
channelselect = atoi(s);
data/gwyddion-2.56/modules/file/csmfile.c:169:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(header, buffer + bmpsize, header_size);
data/gwyddion-2.56/modules/file/csmfile.c:212:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
maxval = MAX(atoi(value), 1);
data/gwyddion-2.56/modules/file/dektakvca.c:586:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(metavalue + len, str->p, str->len);
data/gwyddion-2.56/modules/file/dektakvca.c:670:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, buf->p + *pos, nbytes);
data/gwyddion-2.56/modules/file/dektakxml.c:231:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
res = atoi(s);
data/gwyddion-2.56/modules/file/dumbfile.c:187:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(s);
data/gwyddion-2.56/modules/file/dumbfile.c:200:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(s);
data/gwyddion-2.56/modules/file/dumbfile.c:288:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d, pos, n);
data/gwyddion-2.56/modules/file/ezdfile.c:345:33: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
section->bitdepth = atol(p);
data/gwyddion-2.56/modules/file/ezdfile.c:375:29: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
section->xres = atol(p);
data/gwyddion-2.56/modules/file/ezdfile.c:377:29: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
section->yres = atol(p);
data/gwyddion-2.56/modules/file/ezdfile.c:436:23: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
|| (ngroups = atol(p)) <= 0) {
data/gwyddion-2.56/modules/file/ezdfile.c:450:26: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if ((nchannels = atol(p)) <= 0)
data/gwyddion-2.56/modules/file/femtoscan.c:289:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(g_hash_table_lookup(hash, "Samps/line"));
data/gwyddion-2.56/modules/file/femtoscan.c:290:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(g_hash_table_lookup(hash, "Number of lines"));
data/gwyddion-2.56/modules/file/fitsfile.c:148:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strvalue[FLEN_VALUE];
data/gwyddion-2.56/modules/file/fitsfile.c:266:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keyname[FLEN_KEYWORD];
data/gwyddion-2.56/modules/file/get.h:45:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, *p, size);
data/gwyddion-2.56/modules/file/get.h:52:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, *p, size);
data/gwyddion-2.56/modules/file/get.h:89:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, *p, len);
data/gwyddion-2.56/modules/file/get.h:109:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, *p, len);
data/gwyddion-2.56/modules/file/gsffile.c:258:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size = atoi(g_hash_table_lookup(hash, key));
data/gwyddion-2.56/modules/file/gwyfile.c:535:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&value, buffer + *position, sizeof(gint32));
data/gwyddion-2.56/modules/file/gwyfile.c:555:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&value, buffer + *position, sizeof(gint64));
data/gwyddion-2.56/modules/file/gwyfile.c:576:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&value, buffer + *position, sizeof(gdouble));
data/gwyddion-2.56/modules/file/gwytiff.h:366:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(entry.value, p, valuesize);
data/gwyddion-2.56/modules/file/gwytiff.h:940:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*retval, entry->value, entry->count);
data/gwyddion-2.56/modules/file/gwytiff.h:946:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*retval, p, entry->count);
data/gwyddion-2.56/modules/file/gxyzffile.c:215:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nchan = atoi(value);
data/gwyddion-2.56/modules/file/hdf5file.c:595:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i = atol(p);
data/gwyddion-2.56/modules/file/hdrimage.cc:1745:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*xres = atoi(q);
data/gwyddion-2.56/modules/file/hdrimage.cc:1747:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*yres = atoi(q);
data/gwyddion-2.56/modules/file/hdrimage.cc:1749:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*maxval = atoi(q);
data/gwyddion-2.56/modules/file/imgexportpreset.h:517:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.mode = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:519:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.xytype = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:521:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.ztype = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:523:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.inset_pos = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:525:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.interpolation = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:527:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.title_type = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:529:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.draw_mask = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:531:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.draw_frame = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:533:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.draw_selection = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:535:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.draw_maskkey = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:537:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.scale_font = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:539:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.decomma = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:541:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.transparent_bg = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:543:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.inset_draw_ticks = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:545:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.inset_draw_label = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:547:42: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.inset_draw_text_above = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:549:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.units_in_title = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:551:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.sel_number_objects = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:582:42: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.fix_fmscale_precision = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:584:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.fmscale_precision = atoi(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:586:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.fix_kilo_threshold = atoi(value);
data/gwyddion-2.56/modules/file/iso28600.c:1185:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
hi->i = atoi(line);
data/gwyddion-2.56/modules/file/iso28600.c:1201:45: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
hi->int_list.items[j] = atoi(items[j]);
data/gwyddion-2.56/modules/file/jpkscan.c:1011:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*id = atoi(s);
data/gwyddion-2.56/modules/file/jpkscan.c:1032:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*id1 = atoi(s);
data/gwyddion-2.56/modules/file/jpkscan.c:1036:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*id2 = atoi(s);
data/gwyddion-2.56/modules/file/jpkscan.c:1725:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
jpkfile->ilength = atoi(s);
data/gwyddion-2.56/modules/file/jpkscan.c:1733:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
jpkfile->jlength = atoi(s);
data/gwyddion-2.56/modules/file/jpkscan.c:2088:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data->ndata = atoi(s);
data/gwyddion-2.56/modules/file/jpkscan.c:2117:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(s) != npts) {
data/gwyddion-2.56/modules/file/jpkscan.c:2123:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
npts = atoi(s);
data/gwyddion-2.56/modules/file/leica.c:838:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data->file->version = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/leica.c:901:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
channel->res = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/leica.c:945:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dimension->dimid = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/leica.c:948:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dimension->res = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/mapvue.c:892:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(str, *p, strsize);
data/gwyddion-2.56/modules/file/mapvue.c:1020:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(group->time, p, 8);
data/gwyddion-2.56/modules/file/mapvue.c:1022:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(group->date, p, 8);
data/gwyddion-2.56/modules/file/mapvue.c:1062:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(group->time, p, 8);
data/gwyddion-2.56/modules/file/mapvue.c:1064:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(group->date, p, 8);
data/gwyddion-2.56/modules/file/microprof.c:2021:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
hlines = atoi(buffer + MAGIC_TXT_SIZE);
data/gwyddion-2.56/modules/file/microprof.c:2047:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
|| !((xres = atoi(s)) > 0)) {
data/gwyddion-2.56/modules/file/microprof.c:2053:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
|| !((yres = atoi(s)) > 0)) {
data/gwyddion-2.56/modules/file/mifile.c:544:28: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mifile->xres = atol(value);
data/gwyddion-2.56/modules/file/mifile.c:546:28: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mifile->yres = atol(value);
data/gwyddion-2.56/modules/file/mifile.c:606:34: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mifile->num_points = atol(value);
data/gwyddion-2.56/modules/file/mifile.c:610:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
chunklen = atol(parts[1]);
data/gwyddion-2.56/modules/file/nanoeducator.c:656:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(header->ident, buffer+1, NANOEDU_IDENT_SIZE);
data/gwyddion-2.56/modules/file/nanonis.c:361:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
di.channel = atoi(columns[0]);
data/gwyddion-2.56/modules/file/nanonis.c:599:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
version = atoi(s);
data/gwyddion-2.56/modules/file/nanoobserver.c:669:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
spectrum.x = atoi(x);
data/gwyddion-2.56/modules/file/nanoobserver.c:670:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
spectrum.y = atoi(y);
data/gwyddion-2.56/modules/file/nanoobserver.c:932:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
specdata.capacity = atoi(capacity);
data/gwyddion-2.56/modules/file/nanoobserver.c:933:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
specdata.sizeused = atoi(sizeused);
data/gwyddion-2.56/modules/file/nanoscan.c:766:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nfile->xres = atoi(val);
data/gwyddion-2.56/modules/file/nanoscan.c:770:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nfile->yres = atoi(val);
data/gwyddion-2.56/modules/file/nanoscantech.c:382:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x = atoi(lineparts[0]);
data/gwyddion-2.56/modules/file/nanoscantech.c:383:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
y = atoi(lineparts[1]);
data/gwyddion-2.56/modules/file/nanoscantech.c:404:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x = atoi(lineparts[2]);
data/gwyddion-2.56/modules/file/nanoscantech.c:415:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
z = atoi(lineparts[2]);
data/gwyddion-2.56/modules/file/nanoscantech.c:611:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x = atoi(lineparts[2]);
data/gwyddion-2.56/modules/file/nanoscantech.c:622:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
y = atoi(lineparts[2]);
data/gwyddion-2.56/modules/file/nanoscope-ii.c:201:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = yres = atoi(val);
data/gwyddion-2.56/modules/file/nanoscope.c:760:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(header, buffer, header_len);
data/gwyddion-2.56/modules/file/nmmxyz.c:1142:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dsc.id = atoi(pieces[0]);
data/gwyddion-2.56/modules/file/nmmxyz.c:1145:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dsc.npts = atoi(pieces[3]);
data/gwyddion-2.56/modules/file/nrrdfile.c:377:20: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lineskip = atol(value);
data/gwyddion-2.56/modules/file/nrrdfile.c:379:20: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
byteskip = atol(value);
data/gwyddion-2.56/modules/file/nrrdfile.c:523:17: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key + strlen(key)-4, "meta");
data/gwyddion-2.56/modules/file/nrrdfile.c:561:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(name, "centers");
data/gwyddion-2.56/modules/file/nt-mdt.c:3596:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
params->res = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3637:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
params->units = atoi(value);
data/gwyddion-2.56/modules/file/nt-mdt.c:3690:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pointIndex = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3698:44: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pointInfo.rExecCount = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3700:44: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pointInfo.rMeasCount = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3706:40: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pointInfo.offset = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3728:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dataIndex = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3732:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
blockOffset = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3734:43: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dataInfo.rDataCount = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3772:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
measIndex = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3774:45: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
measInfo.rNameInfoInd = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3776:45: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
measInfo.rDataInfoInd = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3778:48: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
measInfo.rAxisInfoInd[0] = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3780:48: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
measInfo.rAxisOptions[0] = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3796:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
axisIndex = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3798:45: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
axisInfo.rNameInfoInd = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3800:44: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
axisInfo.rPointCount = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nt-mdt.c:3823:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nameIndex = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/nxiifile.c:364:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, nxiifile->head_mode, 6);
data/gwyddion-2.56/modules/file/oirfile.c:1110:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(s);
data/gwyddion-2.56/modules/file/oirfile.c:1114:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(s);
data/gwyddion-2.56/modules/file/oirfile.c:1118:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
depth = atoi(s);
data/gwyddion-2.56/modules/file/oldmda.c:492:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
params->res = atoi(*value_cursor);
data/gwyddion-2.56/modules/file/oldmda.c:532:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
params->arraysize = atoi(v);
data/gwyddion-2.56/modules/file/oldmda.c:535:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
params->datacellmemsize = atoi(v);
data/gwyddion-2.56/modules/file/oldmda.c:542:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
axis->minindex = atoi(v);
data/gwyddion-2.56/modules/file/oldmda.c:545:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
axis->maxindex = atoi(v);
data/gwyddion-2.56/modules/file/ometiff.c:480:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
omefile->xres = atoi(val);
data/gwyddion-2.56/modules/file/ometiff.c:482:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
omefile->yres = atoi(val);
data/gwyddion-2.56/modules/file/ometiff.c:484:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
omefile->zres = atoi(val);
data/gwyddion-2.56/modules/file/ometiff.c:486:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
omefile->cres = atoi(val);
data/gwyddion-2.56/modules/file/ometiff.c:488:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
omefile->tres = atoi(val);
data/gwyddion-2.56/modules/file/ometiff.c:510:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.ifd = atoi(val);
data/gwyddion-2.56/modules/file/ometiff.c:514:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.firstz = atoi(val);
data/gwyddion-2.56/modules/file/ometiff.c:516:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.firstt = atoi(val);
data/gwyddion-2.56/modules/file/ometiff.c:518:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.firstc = atoi(val);
data/gwyddion-2.56/modules/file/ometiff.c:520:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.planecount = atoi(val);
data/gwyddion-2.56/modules/file/omicron.c:490:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ofile->xres = abs(atoi(val));
data/gwyddion-2.56/modules/file/omicron.c:492:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ofile->yres = abs(atoi(val));
data/gwyddion-2.56/modules/file/omicron.c:555:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
channel->min_raw = atoi(line);
data/gwyddion-2.56/modules/file/omicron.c:557:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
channel->max_raw = atoi(line);
data/gwyddion-2.56/modules/file/omicron.c:614:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
channel->min_raw = atoi(line);
data/gwyddion-2.56/modules/file/omicron.c:616:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
channel->max_raw = atoi(line);
data/gwyddion-2.56/modules/file/omicron.c:638:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
channel->npoints = atoi(line);
data/gwyddion-2.56/modules/file/omicron.c:1018:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
gxres = abs(atoi(value));
data/gwyddion-2.56/modules/file/omicron.c:1020:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
gyres = abs(atoi(value));
data/gwyddion-2.56/modules/file/omicron.c:1022:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
gxstep = abs(atoi(value));
data/gwyddion-2.56/modules/file/omicron.c:1024:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
gystep = abs(atoi(value));
data/gwyddion-2.56/modules/file/omicronflat.c:1088:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ydata + ndata, cydata, n*sizeof(gdouble));
data/gwyddion-2.56/modules/file/omicronmatrix.c:993:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
zscale->cnumber = atoi(split[2]);
data/gwyddion-2.56/modules/file/opdfile.c:129:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[BLOCK_NAME_SIZE + 1];
data/gwyddion-2.56/modules/file/opdfile.c:771:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(s);
data/gwyddion-2.56/modules/file/opdfile.c:776:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(s);
data/gwyddion-2.56/modules/file/opengps.c:604:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x3pfile->xres = atoi(s);
data/gwyddion-2.56/modules/file/opengps.c:607:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x3pfile->yres = atoi(s);
data/gwyddion-2.56/modules/file/opengps.c:610:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x3pfile->zres = atoi(s);
data/gwyddion-2.56/modules/file/phoenix.c:568:31: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
phfile->data_offset = atol(rec->value) - 1;
data/gwyddion-2.56/modules/file/phoenix.c:577:31: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (!(phfile->ndata = atol(rec->value))) {
data/gwyddion-2.56/modules/file/phoenix.c:805:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
table->lineno = atol(ss[1]);
data/gwyddion-2.56/modules/file/phoenix.c:820:22: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
table->columns = atol(trec->value);
data/gwyddion-2.56/modules/file/phoenix.c:824:19: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
table->rows = atol(trec->value);
data/gwyddion-2.56/modules/file/phoenix.c:830:25: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
table->offset = atol(trec->value) - 1;
data/gwyddion-2.56/modules/file/phoenix.c:924:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(table->filename, filename, strlen(filename));
data/gwyddion-2.56/modules/file/phoenix.c:1020:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
header->field = atol(v)
data/gwyddion-2.56/modules/file/pltfile.c:164:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(g_hash_table_lookup(hash, "Points"));
data/gwyddion-2.56/modules/file/pltfile.c:165:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(g_hash_table_lookup(hash, "Lines"));
data/gwyddion-2.56/modules/file/princetonspe.c:207:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
len = atoi(value);
data/gwyddion-2.56/modules/file/princetonspe.c:434:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(xmldata, pspefile->buffer + pspefile->footer_offset, xmlsize);
data/gwyddion-2.56/modules/file/psia.c:703:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(header->reserved, p, 30*sizeof(gint));
data/gwyddion-2.56/modules/file/quesant.c:155:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key, p, 4);
data/gwyddion-2.56/modules/file/rawfile.c:1885:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
args->p.byteswap = atoi(gtk_entry_get_text(GTK_ENTRY(controls->byteswap)));
data/gwyddion-2.56/modules/file/rawfile.c:2524:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c, nptr, decimal_point_pos - nptr);
data/gwyddion-2.56/modules/file/rawfile.c:2526:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c, decimal_point, decimal_point_len);
data/gwyddion-2.56/modules/file/rawfile.c:2528:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c, decimal_point_pos + 1, end - (decimal_point_pos + 1));
data/gwyddion-2.56/modules/file/rawfile.c:2549:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(copy, nptr, end - nptr);
data/gwyddion-2.56/modules/file/rawfilepreset.h:394:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.format = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:396:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.xres = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:398:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.yres = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:400:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.xyexponent = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:402:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.zexponent = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:415:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.havemissing = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:420:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.builtin = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:422:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.offset = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:424:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.size = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:426:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.skip = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:428:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.rowskip = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:430:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.sign = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:432:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.revsample = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:434:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.revbyte = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:436:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.byteswap = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:439:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.lineoffset = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:441:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.skipfields = atoi(value);
data/gwyddion-2.56/modules/file/rawfilepreset.h:443:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.decomma = atoi(value);
data/gwyddion-2.56/modules/file/renishaw.c:1162:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xunits = atoi(specxunit);
data/gwyddion-2.56/modules/file/rhk-sm3.c:353:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(page->version, p, MAGIC_TOTAL_SIZE);
data/gwyddion-2.56/modules/file/sdfile.c:655:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
field = atoi(val); \
data/gwyddion-2.56/modules/file/sensofar.c:954:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&data_desc.date.str, p, DATE_SIZE);
data/gwyddion-2.56/modules/file/sensofar.c:960:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&data_desc.user_comment, p, COMMENT_SIZE);
data/gwyddion-2.56/modules/file/sensofar.c:1575:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char day_name[4], month_name[4];
data/gwyddion-2.56/modules/file/sensofarx.c:231:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(g_hash_table_lookup(hash, "/xml/GENERAL/IMAGE_SIZE_X"));
data/gwyddion-2.56/modules/file/sensofarx.c:235:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(g_hash_table_lookup(hash, "/xml/GENERAL/IMAGE_SIZE_Y"));
data/gwyddion-2.56/modules/file/sensofarx.c:542:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
&& (n = atoi(value))) {
data/gwyddion-2.56/modules/file/sensolytics.c:296:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*ndata = atoi(value);
data/gwyddion-2.56/modules/file/sensolytics.c:307:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dimensions->yres = atoi(value);
data/gwyddion-2.56/modules/file/sensolytics.c:316:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dimensions->xres = atoi(value) + 1;
data/gwyddion-2.56/modules/file/shimadzu.c:527:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*xres = atoi(g_hash_table_lookup(hash, "SCANNING PARAMS::PixelsX"));
data/gwyddion-2.56/modules/file/shimadzu.c:530:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*yres = atoi(g_hash_table_lookup(hash, "SCANNING PARAMS::PixelsY"));
data/gwyddion-2.56/modules/file/shimadzu.c:557:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
zp = atoi(g_hash_table_lookup(hash, "SCANNING PARAMS::PixelsZ"));
data/gwyddion-2.56/modules/file/sicmfile.c:345:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.date, p+1, 78);
data/gwyddion-2.56/modules/file/sicmfile.c:349:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.time, p+1, 78);
data/gwyddion-2.56/modules/file/sicmfile.c:357:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.space2, p+1, 6);
data/gwyddion-2.56/modules/file/sicmfile.c:360:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.comment, p+1, 80);
data/gwyddion-2.56/modules/file/sicmfile.c:363:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.title, p+1, 80);
data/gwyddion-2.56/modules/file/sicmfile.c:398:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.space, p+1, 6);
data/gwyddion-2.56/modules/file/sicmfile.c:402:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.modeStr, p+1, 40);
data/gwyddion-2.56/modules/file/sicmfile.c:405:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.loopStr, p+1, 40);
data/gwyddion-2.56/modules/file/sicmfile.c:408:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.sizeStr, p+1, 40);
data/gwyddion-2.56/modules/file/sicmfile.c:411:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sicm.posStr, p+1, 40);
data/gwyddion-2.56/modules/file/sis.c:976:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(image->parent_processing_step, p, 4);
data/gwyddion-2.56/modules/file/spip-asc.c:221:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(g_hash_table_lookup(hash, "x-pixels"));
data/gwyddion-2.56/modules/file/spip-asc.c:222:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(g_hash_table_lookup(hash, "y-pixels"));
data/gwyddion-2.56/modules/file/spip-asc.c:287:62: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if ((value = g_hash_table_lookup(hash, "voidpixels")) && atoi(value)) {
data/gwyddion-2.56/modules/file/spip-asc.c:334:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
npoints = atoi(g_hash_table_lookup(hash, "points"));
data/gwyddion-2.56/modules/file/spml-utils.h:70:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char in[CHUNK];
data/gwyddion-2.56/modules/file/spml-utils.h:71:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char out[CHUNK];
data/gwyddion-2.56/modules/file/spml-utils.h:116:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(zstr->in), in_buf, count);
data/gwyddion-2.56/modules/file/spml-utils.h:226:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pp[4];
data/gwyddion-2.56/modules/file/spml-utils.h:231:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(float));
data/gwyddion-2.56/modules/file/spml-utils.h:257:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pp[8];
data/gwyddion-2.56/modules/file/spml-utils.h:262:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(double));
data/gwyddion-2.56/modules/file/spml-utils.h:292:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pp[4];
data/gwyddion-2.56/modules/file/spml-utils.h:297:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(gint32));
data/gwyddion-2.56/modules/file/spml-utils.h:323:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pp[4];
data/gwyddion-2.56/modules/file/spml-utils.h:328:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(guint32));
data/gwyddion-2.56/modules/file/spml-utils.h:354:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pp[2];
data/gwyddion-2.56/modules/file/spml-utils.h:359:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(gint16));
data/gwyddion-2.56/modules/file/spml-utils.h:383:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pp[2];
data/gwyddion-2.56/modules/file/spml-utils.h:388:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z.pp, *p, sizeof(guint16));
data/gwyddion-2.56/modules/file/spml.c:1004:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(gwy_data, data,
data/gwyddion-2.56/modules/file/spmlabf.c:171:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data_offset = atoi(g_hash_table_lookup(hash, "DataOffset"));
data/gwyddion-2.56/modules/file/spmlabf.c:177:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(g_hash_table_lookup(hash, "ResolutionX"));
data/gwyddion-2.56/modules/file/spmlabf.c:178:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(g_hash_table_lookup(hash, "ResolutionY"));
data/gwyddion-2.56/modules/file/spmxfile.c:343:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
newstream.blocksize = atoi(value);
data/gwyddion-2.56/modules/file/spmxfile.c:390:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
stream->xyres[stream->dim] = atoi(value);
data/gwyddion-2.56/modules/file/stpfile.c:307:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data->id = atol(line + KEY_LEN);
data/gwyddion-2.56/modules/file/stpfile.c:319:30: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data->xres = atol(value);
data/gwyddion-2.56/modules/file/stpfile.c:321:30: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data->yres = atol(value);
data/gwyddion-2.56/modules/file/stpfile.c:387:16: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mode = atol(p);
data/gwyddion-2.56/modules/file/surffile.c:175:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char signature[12];
data/gwyddion-2.56/modules/file/surffile.c:180:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char object_name[30];
data/gwyddion-2.56/modules/file/surffile.c:181:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char operator_name[30];
data/gwyddion-2.56/modules/file/surffile.c:187:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reserved[8];
data/gwyddion-2.56/modules/file/surffile.c:197:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char xaxis[16];
data/gwyddion-2.56/modules/file/surffile.c:198:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yaxis[16];
data/gwyddion-2.56/modules/file/surffile.c:199:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zaxis[16];
data/gwyddion-2.56/modules/file/surffile.c:200:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dx_unit[16];
data/gwyddion-2.56/modules/file/surffile.c:201:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dy_unit[16];
data/gwyddion-2.56/modules/file/surffile.c:202:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dz_unit[16];
data/gwyddion-2.56/modules/file/surffile.c:203:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char xlength_unit[16];
data/gwyddion-2.56/modules/file/surffile.c:204:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ylength_unit[16];
data/gwyddion-2.56/modules/file/surffile.c:205:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zlength_unit[16];
data/gwyddion-2.56/modules/file/surffile.c:212:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char obsolete[12];
data/gwyddion-2.56/modules/file/surffile.c:221:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char obsolete2[10];
data/gwyddion-2.56/modules/file/surffile.c:224:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char client_zone[128];
data/gwyddion-2.56/modules/file/surffile.c:228:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reservedzone[34];
data/gwyddion-2.56/modules/file/surffile.c:271:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&swap, &in, 4);
data/gwyddion-2.56/modules/file/surffile.c:273:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&out, &swap, 4);
data/gwyddion-2.56/modules/file/surffile.c:598:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[40];
data/gwyddion-2.56/modules/file/surffile.c:735:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(surf.xlength_unit, surf.dx_unit, 16);
data/gwyddion-2.56/modules/file/surffile.c:740:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(surf.ylength_unit, surf.dy_unit, 16);
data/gwyddion-2.56/modules/file/tescan.c:522:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, block->data, block->size-2);
data/gwyddion-2.56/modules/file/ttffile.c:358:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
header->xres = atoi(g_match_info_fetch_named(info, "xres"));
data/gwyddion-2.56/modules/file/ttffile.c:359:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
header->yres = atoi(g_match_info_fetch_named(info, "yres"));
data/gwyddion-2.56/modules/file/witec-asc.c:186:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(g_hash_table_lookup(hash, "PointsPerLine"));
data/gwyddion-2.56/modules/file/witec-asc.c:187:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(g_hash_table_lookup(hash, "LinesPerImage"));
data/gwyddion-2.56/modules/file/witfile.c:406:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(unit, witfile->range_options.unit_x,
data/gwyddion-2.56/modules/file/witfile.c:415:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(unit, witfile->scales[i].measure,
data/gwyddion-2.56/modules/file/wsffile.c:170:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(g_hash_table_lookup(hash, "Pixels in X"));
data/gwyddion-2.56/modules/file/wsffile.c:171:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(g_hash_table_lookup(hash, "Lines in Y"));
data/gwyddion-2.56/modules/file/wsxmfile.c:253:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
|| (xres = atol(p)) <= 0)) {
data/gwyddion-2.56/modules/file/wsxmfile.c:260:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
|| (yres = atol(p)) <= 0)) {
data/gwyddion-2.56/modules/file/wsxmfile.c:493:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(strstr(header, "99999"), buf, 5);
data/gwyddion-2.56/modules/file/zeisslsm.c:849:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bdata + z * directory->image_width * directory->image_height,
data/gwyddion-2.56/modules/graph/graph_cd.c:687:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/gwyddion-2.56/modules/graph/graph_fdfit.c:1014:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/gwyddion-2.56/modules/graph/graph_fit.c:1089:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/gwyddion-2.56/modules/layer/path.c:991:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, xy, OBJECT_SIZE*sizeof(gdouble));
data/gwyddion-2.56/modules/plugin-proxy.c:1278:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xres = atoi(s);
data/gwyddion-2.56/modules/plugin-proxy.c:1291:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
yres = atoi(s);
data/gwyddion-2.56/modules/plugin-proxy.c:1379:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d, pos, n);
data/gwyddion-2.56/modules/process/convolutionfilterpreset.h:199:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->matrix + i*newsize,
data/gwyddion-2.56/modules/process/convolutionfilterpreset.h:206:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->matrix + (i + d)*newsize + d,
data/gwyddion-2.56/modules/process/convolutionfilterpreset.h:424:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.size = atoi(value);
data/gwyddion-2.56/modules/process/convolutionfilterpreset.h:426:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data.auto_divisor = !!atoi(value);
data/gwyddion-2.56/modules/process/neuraldata.h:345:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nndata.width = atoi(value);
data/gwyddion-2.56/modules/process/neuraldata.h:347:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nndata.height = atoi(value);
data/gwyddion-2.56/modules/process/neuraldata.h:349:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nndata.nlayers = atoi(value);
data/gwyddion-2.56/modules/process/neuraldata.h:354:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nndata.nhidden = atoi(value);
data/gwyddion-2.56/modules/process/neuraldata.h:356:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nndata.noutput = atoi(value);
data/gwyddion-2.56/modules/process/neuraldata.h:361:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nndata.inpowerxy = atoi(value);
data/gwyddion-2.56/modules/process/neuraldata.h:363:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nndata.inpowerz = atoi(value);
data/gwyddion-2.56/modules/pygwy/gwy.c:124:12: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static wchar_t orig_cwd[PATH_MAX];
data/gwyddion-2.56/modules/pygwy/gwy.c:145:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(installdir + size-1, "\\bin", 5);
data/gwyddion-2.56/modules/pygwy/gwy.c:157:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(installdir + size-1, "\\bin", 5);
data/gwyddion-2.56/modules/pygwy/pygwy.c:362:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[1];
data/gwyddion-2.56/modules/pygwy/wrap_calls.c:1131:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(xyarray->data, xy, 2*ndata*sizeof(gdouble));
data/gwyddion-2.56/modules/tools/icolorange.c:557:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
id = atoi(dkey + 1);
data/gwyddion-2.56/modules/volume/volume_fdfit.c:1305:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/gwyddion-2.56/modules/volume/volume_kmeans.c:679:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(xdata, gwy_data_line_get_data(calibration),
data/gwyddion-2.56/modules/volume/volume_kmeans.c:689:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ydata, centers + c * zres, zres * sizeof(gdouble));
data/gwyddion-2.56/modules/volume/volume_kmedians.c:527:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(xdata, gwy_data_line_get_data(calibration),
data/gwyddion-2.56/modules/volume/volume_kmedians.c:537:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ydata, centers + c * zres, zres * sizeof(gdouble));
data/gwyddion-2.56/modules/volume/volume_linestat.c:724:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iter->dline->data, iter->buf + kk*npts, npts * sizeof(gdouble));
data/gwyddion-2.56/modules/volume/volume_zcal.c:621:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dline->data, data->data, data->len*sizeof(gdouble));
data/gwyddion-2.56/plugins/dump.c:107:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fhr = fopen(src_file, "rb"))) {
data/gwyddion-2.56/plugins/dump.c:111:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fhw = fopen(dest_file, "wb"))) {
data/gwyddion-2.56/plugins/dump.cc:31:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, dfield.data, xres*yres*sizeof(double));
data/gwyddion-2.56/plugins/dump.cc:59:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line_buf[buf_len];
data/gwyddion-2.56/plugins/dump.cc:114:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long int xres = atoi(iter->second.c_str());
data/gwyddion-2.56/plugins/dump.cc:124:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long int yres = atoi(iter->second.c_str());
data/gwyddion-2.56/thumbnailer/gwyddion-thumbnailer.c:386:17: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if ((gulong)atol(value) != fileinfo->mtime) {
data/gwyddion-2.56/thumbnailer/gwyddion-thumbnailer.c:390:28: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
(gulong)atol(value), KEY_THUMB_MTIME, fileinfo->mtime);
data/gwyddion-2.56/thumbnailer/gwyddion-thumbnailer.c:400:17: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if ((gulong)atol(value) != fileinfo->fsize) {
data/gwyddion-2.56/thumbnailer/gwyddion-thumbnailer.c:404:28: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
(gulong)atol(value), KEY_THUMB_MTIME, fileinfo->fsize);
data/gwyddion-2.56/app/app.c:2389:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(prefix);
data/gwyddion-2.56/app/app.c:2459:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(prefix);
data/gwyddion-2.56/app/data-browser-aux.c:165:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii = i + strlen("/preview");
data/gwyddion-2.56/app/data-browser-aux.c:206:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii = i + strlen("/preview");
data/gwyddion-2.56/app/data-browser-aux.c:271:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen("select/");
data/gwyddion-2.56/app/data-browser-aux.c:280:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen("data/");
data/gwyddion-2.56/app/data-browser-aux.c:287:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen("base/");
data/gwyddion-2.56/app/data-browser-aux.c:292:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen("data/");
data/gwyddion-2.56/app/data-browser-aux.c:299:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen("mask/");
data/gwyddion-2.56/app/data-browser-aux.c:308:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen("data/");
data/gwyddion-2.56/app/data-browser-aux.c:317:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii = strlen("3d/");
data/gwyddion-2.56/app/data-browser-aux.c:329:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen("3d/");
data/gwyddion-2.56/app/data-browser-aux.c:471:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vstrkey = g_strndup(strkey, strlen(strkey) - strlen("/visible"));
data/gwyddion-2.56/app/data-browser-aux.c:471:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vstrkey = g_strndup(strkey, strlen(strkey) - strlen("/visible"));
data/gwyddion-2.56/app/data-browser-aux.c:1337:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = name + strlen(name);
data/gwyddion-2.56/app/data-browser-aux.c:1340:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = name + strlen(name);
data/gwyddion-2.56/app/data-browser-aux.c:1344:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = name + strlen(name);
data/gwyddion-2.56/app/data-browser-aux.c:1417:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = name + strlen(name);
data/gwyddion-2.56/app/data-browser-aux.c:1420:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = name + strlen(name);
data/gwyddion-2.56/app/data-browser-aux.c:1424:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = name + strlen(name);
data/gwyddion-2.56/app/data-browser-aux.c:1481:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = name + strlen(name);
data/gwyddion-2.56/app/data-browser-aux.c:1484:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = name + strlen(name);
data/gwyddion-2.56/app/data-browser-aux.c:1488:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = name + strlen(name);
data/gwyddion-2.56/app/data-browser-aux.c:1683:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
flen = strlen(key_from);
data/gwyddion-2.56/app/data-browser-aux.c:1684:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tlen = strlen(key_to);
data/gwyddion-2.56/app/data-browser-aux.c:1693:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) >= sizeof(key_to)-tlen)
data/gwyddion-2.56/app/data-browser-aux.c:1696:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(key_to + tlen, name, strlen(name)+1);
data/gwyddion-2.56/app/data-browser.c:2984:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(key);
data/gwyddion-2.56/app/data-browser.c:3441:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(key);
data/gwyddion-2.56/app/filelist.c:1413:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
c = rf->file_sys[strlen(gwy_recent_file_thumbnail_dir())];
data/gwyddion-2.56/app/gwymoduleutils-file.c:450:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
section_suffix_len = strlen(section_suffix);
data/gwyddion-2.56/app/gwymoduleutils-file.c:461:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
endsect_suffix_len = strlen(endsect_suffix);
data/gwyddion-2.56/app/gwymoduleutils-file.c:466:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
comment_prefix_len = strlen(parser->comment_prefix);
data/gwyddion-2.56/app/gwymoduleutils-file.c:487:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_prefix_len = strlen(parser->line_prefix);
data/gwyddion-2.56/app/gwymoduleutils-file.c:488:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (parser->key_value_separator && strlen(parser->key_value_separator) == 1)
data/gwyddion-2.56/app/gwymoduleutils-file.c:511:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(len = chomp(line, strlen(line))))
data/gwyddion-2.56/app/gwymoduleutils.c:158:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
data_len = strlen(mydata);
data/gwyddion-2.56/app/gwymoduleutils.c:160:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
data_len = strlen(data);
data/gwyddion-2.56/app/gwyplaintool.c:277:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(data_key);
data/gwyddion-2.56/app/gwyplaintool.c:717:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(data_key);
data/gwyddion-2.56/app/gwytool.c:153:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(klass->prefix);
data/gwyddion-2.56/app/gwytool.c:216:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(klass->prefix);
data/gwyddion-2.56/app/gwytool.c:364:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(klass->prefix);
data/gwyddion-2.56/app/help.c:427:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(uri);
data/gwyddion-2.56/app/help.c:466:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(base);
data/gwyddion-2.56/app/log.c:905:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const gchar *name = function + strlen(ftpfx);
data/gwyddion-2.56/app/log.c:909:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(gint)strlen(ftpfx)-2, ftpfx, name);
data/gwyddion-2.56/app/settings.c:204:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen(magic_header));
data/gwyddion-2.56/app/undo.c:1019:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(prefix);
data/gwyddion-2.56/gwyddion/about.c:94:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (RELEASEDATE == 0 && strlen(GWY_VERSION_STRING) < 9)
data/gwyddion-2.56/gwyddion/about.c:334:9: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(datestr, "%3s %u %u", mstr, d, y) == 3
data/gwyddion-2.56/gwyddion/about.c:335:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strlen(mstr) == 3
data/gwyddion-2.56/gwyddion/gwyddion.c:344:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!RELEASEDATE && strlen(GWY_VERSION_STRING) < 9)
data/gwyddion-2.56/gwyddion/gwyddion.c:412:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const gchar *v = (*argv)[i] + strlen("--disable-modules=");
data/gwyddion-2.56/gwyddion/gwyddion.c:413:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(v)) {
data/gwyddion-2.56/gwyddion/gwyddion.c:600:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int buflen, n = strlen(p);
data/gwyddion-2.56/gwyddion/remote-win32.c:150:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iCurBytePos += strlen(fullFilename) +1;
data/gwyddion-2.56/gwyddion/remote-x11.c:172:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
8, uri, strlen(uri));
data/gwyddion-2.56/gwyddion/toolbox-spec.c:119:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((l = strlen(attval))
data/gwyddion-2.56/libdraw/gwyrgba.c:371:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(prefix);
data/gwyddion-2.56/libgwyddion/gwycontainer.c:460:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pfdata.prefix_length = prefix ? strlen(prefix) : 0;
data/gwyddion-2.56/libgwyddion/gwycontainer.c:597:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pfdata.prefix_length = prefix ? strlen(prefix) : 0;
data/gwyddion-2.56/libgwyddion/gwycontainer.c:632:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pfdata.prefix_length = prefix ? strlen(prefix) : 0;
data/gwyddion-2.56/libgwyddion/gwycontainer.c:2288:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = pfxlist->pfxlengths[n] = strlen(prefix);
data/gwyddion-2.56/libgwyddion/gwycontainer.c:2412:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = strlen(k);
data/gwyddion-2.56/libgwyddion/gwycontainer.c:2481:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
spflen = strlen(source_prefix);
data/gwyddion-2.56/libgwyddion/gwyentities.c:288:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(text) + 1;
data/gwyddion-2.56/libgwyddion/gwyentities.c:319:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pos = amp + strlen(ent);
data/gwyddion-2.56/libgwyddion/gwymd5.c:75:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer_size = strlen(buffer);
data/gwyddion-2.56/libgwyddion/gwyomp.h:131:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#pragma omp atomic read
data/gwyddion-2.56/libgwyddion/gwyresults.c:183:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
guint slen = strlen(s), vlen = value->flen-4;
data/gwyddion-2.56/libgwyddion/gwyresults.c:1286:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_return_if_fail(strlen(name) == 1);
data/gwyddion-2.56/libgwyddion/gwyresults.c:1318:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if ((!unitstr || !strlen(unitstr)) && *dest)
data/gwyddion-2.56/libgwyddion/gwyresults.c:1346:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_return_if_fail(strlen(name) == 1);
data/gwyddion-2.56/libgwyddion/gwyresults.c:1804:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(line->unit_str))
data/gwyddion-2.56/libgwyddion/gwyresults.c:1981:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(format);
data/gwyddion-2.56/libgwyddion/gwyresults.c:3158:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(fields);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:165:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(type_name) + 1 + sizeof(guint32);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:552:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_byte_array_append(buffer, object_name, strlen(object_name) + 1);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:697:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_byte_array_append(buffer, sp->name, strlen(sp->name) + 1);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:788:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_byte_array_append(buffer, value, strlen(value) + 1);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:802:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_byte_array_append(buffer, value, strlen(value) + 1);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:874:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = strlen(object_name) + 1 + sizeof(guint32);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:919:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = strlen(object_name) + 1 + sizeof(guint32);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:954:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = strlen(sp->name) + 1;
data/gwyddion-2.56/libgwyddion/gwyserializable.c:967:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size += strlen(value);
data/gwyddion-2.56/libgwyddion/gwyserializable.c:977:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size += strlen(value);
data/gwyddion-2.56/libgwyddion/gwysiunit.c:960:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string += strlen("<sup>");
data/gwyddion-2.56/libgwyddion/gwysiunit.c:999:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end = string + strlen(string);
data/gwyddion-2.56/libgwyddion/gwysiunit.c:1011:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& !g_ascii_isalpha(buf->str[strlen(known_units[i])])) {
data/gwyddion-2.56/libgwyddion/gwysiunit.c:1033:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& g_ascii_isalpha(buf->str[strlen(pfx)])) {
data/gwyddion-2.56/libgwyddion/gwysiunit.c:1035:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_string_erase(buf, 0, strlen(pfx));
data/gwyddion-2.56/libgwyddion/gwysiunit.c:1044:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unit.power = strtol(p + strlen("<sup>"), &e, 10);
data/gwyddion-2.56/libgwyddion/gwysiunit.c:1045:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (e == p + strlen("<sup>")
data/gwyddion-2.56/libgwyddion/gwyutils.c:174:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nlen = strlen(needle);
data/gwyddion-2.56/libgwyddion/gwyutils.c:185:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hlen = strlen(haystack);
data/gwyddion-2.56/libgwyddion/gwyutils.c:186:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rlen = strlen(replacement);
data/gwyddion-2.56/libgwyddion/gwyutils.c:611:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(res_url_path);
data/gwyddion-2.56/libgwyddion/gwyutils.c:613:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(basedir, res_url_path, len);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1151:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
oldlen = strlen(old);
data/gwyddion-2.56/libgwyddion/gwyutils.c:1164:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
repllen = strlen(replacement);
data/gwyddion-2.56/libgwydgets/gwy3dlabel.c:536:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lb += strlen(key->str);
data/gwyddion-2.56/libgwydgets/gwy3dview.c:658:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen(data_key_string));
data/gwyddion-2.56/libgwydgets/gwy3dwindow.c:804:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
detail = g_newa(gchar, strlen(property) + sizeof("notify::"));
data/gwyddion-2.56/libgwydgets/gwydatawindow.c:648:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(xyvf->units) ? " " : "", xyvf->units,
data/gwyddion-2.56/libgwydgets/gwydatawindow.c:650:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(xyvf->units) ? " " : "", xyvf->units,
data/gwyddion-2.56/libgwydgets/gwydatawindow.c:652:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(zvf->units) ? " " : "", zvf->units);
data/gwyddion-2.56/libgwydgets/gwydgetutils.c:1044:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(text);
data/gwyddion-2.56/libgwydgets/gwygraph.c:338:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const gchar *name = pspec->name + strlen("axis-label-");
data/gwyddion-2.56/libgwydgets/gwygraph.c:357:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const gchar *name = pspec->name + strlen("si-unit-");
data/gwyddion-2.56/libgwydgets/gwygraphlabel.c:283:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const gchar *name = pspec->name + strlen("label-");
data/gwyddion-2.56/libgwydgets/gwygraphwindow.c:536:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i += strlen("×10<sup>");
data/gwyddion-2.56/libgwydgets/gwygraphwindow.c:548:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i += strlen("×10<sup>-");
data/gwyddion-2.56/libgwydgets/gwylayer-basic.c:697:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(prefix);
data/gwyddion-2.56/libgwydgets/gwylayer-basic.c:822:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(prefix);
data/gwyddion-2.56/libgwydgets/gwylayer-basic.c:931:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen(data_key_string));
data/gwyddion-2.56/libgwydgets/gwylayer-mask.c:280:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(prefix);
data/gwyddion-2.56/libgwydgets/gwypixmaplayer.c:351:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen(data_key_string));
data/gwyddion-2.56/libgwydgets/gwyruler.c:619:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unitstr_len = strlen(format->units) + 30;
data/gwyddion-2.56/libgwydgets/gwyscitext.c:334:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gtk_editable_insert_text(editable, p, strlen(p), &pos);
data/gwyddion-2.56/libgwydgets/gwystock.c:218:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(st) != 1)
data/gwyddion-2.56/libgwydgets/gwyvectorlayer.c:540:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
detailed_signal = g_newa(gchar, sizeof("item-changed::") + strlen(key));
data/gwyddion-2.56/libgwymodule/gwymodulebrowser.c:349:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen((gchar*)l->data) + 1;
data/gwyddion-2.56/libgwymodule/gwymoduleloader.c:652:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(s);
data/gwyddion-2.56/libgwymodule/gwymoduleloader.c:653:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
suffix_len = strlen(suffix);
data/gwyddion-2.56/libgwymodule/gwymoduleloader.c:786:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& gro_funcs[i].func(canon_name + strlen(gro_funcs[i].prefix)))
data/gwyddion-2.56/libprocess/gwygrainvalue.c:579:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(s);
data/gwyddion-2.56/libprocess/gwygrainvalue.c:771:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (gwy_strequal(key, "symbol") && strlen(value)) {
data/gwyddion-2.56/libprocess/gwygrainvalue.c:775:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (gwy_strequal(key, "symbol_markup") && strlen(value)) {
data/gwyddion-2.56/modules/file/accurexii-txt.c:213:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p += strlen(DATA_MAGIC);
data/gwyddion-2.56/modules/file/accurexii-txt.c:220:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
zunit = gwy_si_unit_new_parse(value + strlen("Z unit:"), &power10z);
data/gwyddion-2.56/modules/file/afmw-spec.c:131:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s, strlen(s));
data/gwyddion-2.56/modules/file/afmw-spec.c:511:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_assert(strlen(s) == 10);
data/gwyddion-2.56/modules/file/afmw-spec.c:521:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_assert(strlen(s) == 8);
data/gwyddion-2.56/modules/file/afmw-spec.c:561:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(basename);
data/gwyddion-2.56/modules/file/aistfile.c:184:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (is_data_node <= 1 && nchildren <= 0xff && strlen(name) <= 0xff)
data/gwyddion-2.56/modules/file/alicona.c:405:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(afile->comment)) {
data/gwyddion-2.56/modules/file/alicona.c:406:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gchar *p = g_convert(afile->comment, strlen(afile->comment),
data/gwyddion-2.56/modules/file/alicona.c:591:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = strlen(tag->key); i < KEY_SIZE-1; i++) {
data/gwyddion-2.56/modules/file/alicona.c:614:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = strlen(tag->value); i < VALUE_SIZE-1; i++) {
data/gwyddion-2.56/modules/file/ambprofile.c:166:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
head += strlen("<ProfilometerData>");
data/gwyddion-2.56/modules/file/ambprofile.c:331:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(line);
data/gwyddion-2.56/modules/file/anfatec.c:163:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(paramfile);
data/gwyddion-2.56/modules/file/anfatec.c:463:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gssize len = strlen(basename_sys);
data/gwyddion-2.56/modules/file/apedaxfile.c:354:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (gwy_memmem(filehead, len, filenames[i], strlen(filenames[i])))
data/gwyddion-2.56/modules/file/apefile.c:611:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& (p = g_convert(apefile->remark, strlen(apefile->remark),
data/gwyddion-2.56/modules/file/asciiexport.c:383:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!info->decimal_dot || !(len = strlen(info->decimal_dot))) {
data/gwyddion-2.56/modules/file/attocube.c:182:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p += strlen(DATA_MAGIC);
data/gwyddion-2.56/modules/file/createc.c:229:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(gwy_enum_to_string(version, versions, G_N_ELEMENTS(versions)));
data/gwyddion-2.56/modules/file/createc.c:324:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(versions[i].name);
data/gwyddion-2.56/modules/file/createc.c:332:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)strlen(versions[0].name), buffer);
data/gwyddion-2.56/modules/file/createc.c:717:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (ctr = tobestored; *ctr; ctr += strlen(ctr) + 1)
data/gwyddion-2.56/modules/file/dektakxml.c:164:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
head += strlen("<DataContainer typeid=\"125\"");
data/gwyddion-2.56/modules/file/dimensionfile.c:115:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!gwy_memmem(head, fileinfo->buffer_len, "@Sens. ", strlen("@Sens. ")))
data/gwyddion-2.56/modules/file/dimensionfile.c:241:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p += strlen(p);
data/gwyddion-2.56/modules/file/ecsfile.c:182:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!get_scan_size(s + strlen("Scan Size: "), &xreal, &q, &c)) {
data/gwyddion-2.56/modules/file/ezdfile.c:306:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(len = strlen(line)))
data/gwyddion-2.56/modules/file/ezdfile.c:580:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(cval = g_convert(value, strlen(value), "UTF-8", "ISO-8859-1",
data/gwyddion-2.56/modules/file/femtoscan-txt.c:159:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
read_values(xcal, line + strlen("\tX,nm\t"));
data/gwyddion-2.56/modules/file/femtoscan-txt.c:168:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unit = gwy_si_unit_new_parse(line + strlen(MAGIC2), &power10);
data/gwyddion-2.56/modules/file/femtoscan.c:358:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p = gwy_memmem(buffer, size, DATA_LENGTH, strlen(DATA_LENGTH))))
data/gwyddion-2.56/modules/file/femtoscan.c:361:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p += strlen(DATA_LENGTH);
data/gwyddion-2.56/modules/file/femtoscan.c:363:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (datalen >= size-1 || datalen < (p - buffer) + strlen(DATA_LENGTH) + 4)
data/gwyddion-2.56/modules/file/femtoscan.c:392:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_hash_table_insert(hash, "stream", line + strlen("stream: "));
data/gwyddion-2.56/modules/file/femtoscan.c:393:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gwy_debug("stream <%s>", line + strlen("stream: "));
data/gwyddion-2.56/modules/file/hdf5file.c:591:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = path->str + strlen("/DataSet/Resolution ");
data/gwyddion-2.56/modules/file/igorfile.c:795:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(name);
data/gwyddion-2.56/modules/file/igorfile.c:798:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gchar *t = s + strlen("Mod");
data/gwyddion-2.56/modules/file/igorfile.c:807:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name[len - strlen("Trace")] = '\0';
data/gwyddion-2.56/modules/file/igorfile.c:809:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name[len - strlen("Retrace")] = '\0';
data/gwyddion-2.56/modules/file/igorfile.c:957:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str);
data/gwyddion-2.56/modules/file/igorfile.c:1066:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(unitstr) == 1)
data/gwyddion-2.56/modules/file/igorfile.c:1073:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(unitstr) == 1) {
data/gwyddion-2.56/modules/file/imgexport.c:545:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(format->name);
data/gwyddion-2.56/modules/file/imgexport.c:825:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen(decimal_symbol);
data/gwyddion-2.56/modules/file/imgexport.c:1174:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sizes->zunits_nonempty = !!strlen(vf->units);
data/gwyddion-2.56/modules/file/imgexport.c:1301:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(vf->units))
data/gwyddion-2.56/modules/file/imgexport.c:2088:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (args->units_in_title && strlen(vf->units))
data/gwyddion-2.56/modules/file/imgexport.c:2351:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(name))
data/gwyddion-2.56/modules/file/imgexport.c:4917:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s += strlen("/select/");
data/gwyddion-2.56/modules/file/imgexport.c:4945:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_assert(strlen(env->decimal_symbol) != 0);
data/gwyddion-2.56/modules/file/imgexport.c:5218:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
chunk->text_length = strlen(chunk->text);
data/gwyddion-2.56/modules/file/imgexport.c:5232:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
chunk->text_length = strlen(chunk->text);
data/gwyddion-2.56/modules/file/imgexport.c:5552:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (fwrite(ppmh, 1, strlen(ppmh), fh) != strlen(ppmh)) {
data/gwyddion-2.56/modules/file/imgexport.c:5552:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (fwrite(ppmh, 1, strlen(ppmh), fh) != strlen(ppmh)) {
data/gwyddion-2.56/modules/file/imgexport.c:5769:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (fwrite(ppmh, 1, strlen(ppmh), fh) != strlen(ppmh)) {
data/gwyddion-2.56/modules/file/imgexport.c:5769:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (fwrite(ppmh, 1, strlen(ppmh), fh) != strlen(ppmh)) {
data/gwyddion-2.56/modules/file/imgexport.c:6789:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = strlen(args->font);
data/gwyddion-2.56/modules/file/imgexportpreset.h:596:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:605:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:614:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(value);
data/gwyddion-2.56/modules/file/imgexportpreset.h:623:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(value);
data/gwyddion-2.56/modules/file/iso28600.c:818:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(title)) {
data/gwyddion-2.56/modules/file/iso28600.c:934:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(title)) {
data/gwyddion-2.56/modules/file/iso28600.c:1089:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strlen(strings[i]))
data/gwyddion-2.56/modules/file/iso28600.c:1139:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(strings[96 + 3*id])) {
data/gwyddion-2.56/modules/file/iso28600.c:1552:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(title);
data/gwyddion-2.56/modules/file/iso28600.c:1585:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (fwrite(xreal, strlen(xreal), 1, fh) != 1) {
data/gwyddion-2.56/modules/file/jpkscan.c:2508:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(ss);
data/gwyddion-2.56/modules/file/jspmfile.c:552:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!title || !strlen(title))
data/gwyddion-2.56/modules/file/keyence.c:1090:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (charstrs->title && strlen(charstrs->title))
data/gwyddion-2.56/modules/file/keyence.c:1092:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (charstrs->lens_name && strlen(charstrs->lens_name))
data/gwyddion-2.56/modules/file/lextfile.c:265:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!g_markup_parse_context_parse(context, comment, strlen(comment), &err)
data/gwyddion-2.56/modules/file/lextfile.c:528:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!g_markup_parse_context_parse(context, comment, strlen(comment), &err)
data/gwyddion-2.56/modules/file/lextfile.c:583:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_string_erase(str, 0, strlen("/TiffTagDescData/"));
data/gwyddion-2.56/modules/file/lextfile.c:585:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_string_erase(str, 0, strlen("/ExifTagDescData/"));
data/gwyddion-2.56/modules/file/magellan.c:276:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(value))
data/gwyddion-2.56/modules/file/metropro.c:1001:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& (p = g_locale_to_utf8(field, strlen(field), NULL, NULL, NULL)))
data/gwyddion-2.56/modules/file/microprof.c:1939:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((str->len = strlen(str->str)))
data/gwyddion-2.56/modules/file/nanoeducator.c:1275:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(param->material))
data/gwyddion-2.56/modules/file/nanoeducator.c:1280:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(param->scanner_name))
data/gwyddion-2.56/modules/file/nanonics.c:169:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
header_size = g_ascii_strtoull(s + strlen("HeaderLength="), NULL, 10);
data/gwyddion-2.56/modules/file/nanonics.c:181:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
header_size = (s - header) + strlen("-End Header-");
data/gwyddion-2.56/modules/file/nanonics.c:266:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
END_CHANNEL_MAGIC, strlen(END_CHANNEL_MAGIC));
data/gwyddion-2.56/modules/file/nanonics.c:268:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
- ((guchar*)p + strlen(END_CHANNEL_MAGIC)
data/gwyddion-2.56/modules/file/nanonics.c:390:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (line[strlen(line)-1] == ']') {
data/gwyddion-2.56/modules/file/nanonics.c:416:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (val[strlen(val)-1] != ']') {
data/gwyddion-2.56/modules/file/nanonics.c:423:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
val[strlen(val)-1] = '\0';
data/gwyddion-2.56/modules/file/nanonics.c:493:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
value = g_strstrip(fields[1] + strlen("Units:"));
data/gwyddion-2.56/modules/file/nanonics.c:497:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
value = g_strstrip(fields[2] + strlen("Formula:"));
data/gwyddion-2.56/modules/file/nanonics.c:570:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s[strlen(s) - strlen("Volts") + 1] = '\0';
data/gwyddion-2.56/modules/file/nanonics.c:570:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s[strlen(s) - strlen("Volts") + 1] = '\0';
data/gwyddion-2.56/modules/file/nanonics.c:572:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s[strlen(s) - strlen("Newton") + 1] = '\0';
data/gwyddion-2.56/modules/file/nanonics.c:572:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s[strlen(s) - strlen("Newton") + 1] = '\0';
data/gwyddion-2.56/modules/file/nanonis-spec.c:126:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s, strlen(s));
data/gwyddion-2.56/modules/file/nanonis-spec.c:510:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(basename);
data/gwyddion-2.56/modules/file/nanonis-spec.c:547:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fname) != len
data/gwyddion-2.56/modules/file/nanonis.c:263:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(line);
data/gwyddion-2.56/modules/file/nanonis.c:348:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(line))
data/gwyddion-2.56/modules/file/nanoobserver.c:488:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
guint n = strlen(element_name), len = naofile->path->len;
data/gwyddion-2.56/modules/file/nanoobserver.c:508:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gchar *name = g_strdup(path + strlen("/Measure/Parameters/"));
data/gwyddion-2.56/modules/file/nanoobserver.c:512:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(value)) {
data/gwyddion-2.56/modules/file/nanoobserver.c:551:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const gchar *dataname = filename_curr + strlen("Scan/Data/");
data/gwyddion-2.56/modules/file/nanoobserver.c:557:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(stream->name);
data/gwyddion-2.56/modules/file/nanoobserver.c:683:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
guint n = strlen(element_name), len = naofile->path->len;
data/gwyddion-2.56/modules/file/nanoobserver.c:862:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s += strlen(BLOODY_UTF8_BOM);
data/gwyddion-2.56/modules/file/nanoobserver.c:950:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
guint n = strlen(element_name), len = spectrum->path->len;
data/gwyddion-2.56/modules/file/nanoobserver.c:1047:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s += strlen(BLOODY_UTF8_BOM);
data/gwyddion-2.56/modules/file/nanoscan.c:908:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strlen(name) == strlen(meta->name) + sizeof("_unit")-1) {
data/gwyddion-2.56/modules/file/nanoscan.c:908:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strlen(name) == strlen(meta->name) + sizeof("_unit")-1) {
data/gwyddion-2.56/modules/file/nanoscope.c:834:9: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(end, "%7s", un) != 1) {
data/gwyddion-2.56/modules/file/nanoscope.c:2482:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
q[strlen(q) - 4] = '\0';
data/gwyddion-2.56/modules/file/nanoscope.c:2499:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(line);
data/gwyddion-2.56/modules/file/nanosystemz.c:349:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!dt || strlen(dt) != 19)
data/gwyddion-2.56/modules/file/nmmxyz.c:1261:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gchar *value = line + strlen("Creation time :");
data/gwyddion-2.56/modules/file/nrrdfile.c:523:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(key + strlen(key)-4, "meta");
data/gwyddion-2.56/modules/file/nrrdfile.c:1592:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(f);
data/gwyddion-2.56/modules/file/oirfile.c:488:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (memcmp(xml->root_name, "lut:LUT", strlen("lut:LUT")) == 0)
data/gwyddion-2.56/modules/file/oirfile.c:1068:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(value))
data/gwyddion-2.56/modules/file/ometiff.c:262:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!g_markup_parse_context_parse(context, comment, strlen(comment), &err)
data/gwyddion-2.56/modules/file/omicron.c:220:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
flen = strlen(filename);
data/gwyddion-2.56/modules/file/omicron.c:221:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(stem);
data/gwyddion-2.56/modules/file/omicron.c:707:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base = filename + strlen(filename) - strlen(orig);
data/gwyddion-2.56/modules/file/omicron.c:707:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base = filename + strlen(filename) - strlen(orig);
data/gwyddion-2.56/modules/file/omicron.c:708:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(base);
data/gwyddion-2.56/modules/file/omicronflat.c:1102:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(underscore, space, strlen(space)+1);
data/gwyddion-2.56/modules/file/omicronflat.c:1614:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(ext);
data/gwyddion-2.56/modules/file/omicronflat.c:1754:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(axis->parent_name)) {
data/gwyddion-2.56/modules/file/omicronflat.c:1812:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fff->creation.info)) {
data/gwyddion-2.56/modules/file/omicronmatrix.c:1683:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (!strlen(ident)) {
data/gwyddion-2.56/modules/file/opdfile.c:424:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(block->name, *p, BLOCK_NAME_SIZE);
data/gwyddion-2.56/modules/file/opdfile.c:911:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(cval = g_convert(value, strlen(value), "UTF-8", "ISO-8859-1",
data/gwyddion-2.56/modules/file/opengps.c:403:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(element_name);
data/gwyddion-2.56/modules/file/opengps.c:441:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(text))
data/gwyddion-2.56/modules/file/opengps.c:498:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s += strlen(BLOODY_UTF8_BOM);
data/gwyddion-2.56/modules/file/phoenix.c:260:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p += strlen("INSTRUMENT_NAME ");
data/gwyddion-2.56/modules/file/phoenix.c:439:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
guint len = strlen(s);
data/gwyddion-2.56/modules/file/phoenix.c:525:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line = equalsign + strlen(" = ");
data/gwyddion-2.56/modules/file/phoenix.c:924:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(table->filename, filename, strlen(filename));
data/gwyddion-2.56/modules/file/princetonspe.c:366:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(attribute_names[i]) || !strlen(attribute_values[i]))
data/gwyddion-2.56/modules/file/princetonspe.c:366:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(attribute_names[i]) || !strlen(attribute_values[i]))
data/gwyddion-2.56/modules/file/princetonspe.c:386:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(element_name);
data/gwyddion-2.56/modules/file/princetonspe.c:404:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(text))
data/gwyddion-2.56/modules/file/princetonspe.c:409:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(str->str))
data/gwyddion-2.56/modules/file/princetonspe.c:441:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s += strlen(BLOODY_UTF8_BOM);
data/gwyddion-2.56/modules/file/rawfile.c:2278:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
delimtype = strlen(args->p.delimiter);
data/gwyddion-2.56/modules/file/rawfile.c:2408:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gint len = strlen(missingval);
data/gwyddion-2.56/modules/file/rawfile.c:2438:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gint len = strlen(missingval);
data/gwyddion-2.56/modules/file/rawfile.c:2455:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
decimal_point_len = strlen(decimal_point);
data/gwyddion-2.56/modules/file/rawfile.c:2599:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*(1 + MAX(strlen(args->p.delimiter), 1));
data/gwyddion-2.56/modules/file/rawfilepreset.h:351:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(quoted);
data/gwyddion-2.56/modules/file/rhk-sm4.c:1421:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (header3[0] == '*' || header3[strlen(header3)-1] == '*') {
data/gwyddion-2.56/modules/file/rhk-spm32.c:515:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pos = strlen(name) + 1;
data/gwyddion-2.56/modules/file/sdfile.c:351:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(cval = g_convert(value, strlen(value), "UTF-8", "ISO-8859-1",
data/gwyddion-2.56/modules/file/sdfile.c:651:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(field, val, sizeof(field));
data/gwyddion-2.56/modules/file/sdfile.c:691:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(sdfile->version, val, sizeof(sdfile->version));
data/gwyddion-2.56/modules/file/sdfile.c:753:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
klen = strlen(key);
data/gwyddion-2.56/modules/file/seiko.c:228:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(comment))
data/gwyddion-2.56/modules/file/sensofar.c:1481:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(data_desc->user_comment)) {
data/gwyddion-2.56/modules/file/sensofar.c:1581:9: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(str, "%3s %3s %u %u:%u:%u %u",
data/gwyddion-2.56/modules/file/sensofar.c:1585:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(day_name) != 3 || strlen(month_name) != 3)
data/gwyddion-2.56/modules/file/sensofar.c:1585:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(day_name) != 3 || strlen(month_name) != 3)
data/gwyddion-2.56/modules/file/sensofarx.c:163:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (gwy_memmem(filehead, len, filenames[i], strlen(filenames[i])))
data/gwyddion-2.56/modules/file/sensofarx.c:333:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = path + strlen("/xml/LAYER_");
data/gwyddion-2.56/modules/file/sensofarx.c:355:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(element_name);
data/gwyddion-2.56/modules/file/sensofarx.c:376:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(text))
data/gwyddion-2.56/modules/file/sensofarx.c:381:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(str->str))
data/gwyddion-2.56/modules/file/sensofarx.c:413:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s += strlen(BLOODY_UTF8_BOM);
data/gwyddion-2.56/modules/file/sensofarx.c:464:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s += strlen(BLOODY_UTF8_BOM);
data/gwyddion-2.56/modules/file/sensofarx.c:508:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name = gwy_strreplace(path + strlen("/xml/"), "/", "::", (gsize)-1);
data/gwyddion-2.56/modules/file/sensofarx.c:548:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (name && value && strlen(name) && strlen(value)) {
data/gwyddion-2.56/modules/file/sensofarx.c:548:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (name && value && strlen(name) && strlen(value)) {
data/gwyddion-2.56/modules/file/shimadzu.c:443:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line += strlen("DATA");
data/gwyddion-2.56/modules/file/shimadzu.c:490:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line += strlen("Unit(");
data/gwyddion-2.56/modules/file/shimadzu.c:491:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/gwyddion-2.56/modules/file/spmlab.c:207:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(fileinfo->name_lowercase);
data/gwyddion-2.56/modules/file/spmxfile.c:439:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(element_name);
data/gwyddion-2.56/modules/file/spmxfile.c:466:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(text))
data/gwyddion-2.56/modules/file/spmxfile.c:476:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(str->str))
data/gwyddion-2.56/modules/file/spmxfile.c:479:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (gwy_strequal(path, "/spmx/var") && strlen(varid)) {
data/gwyddion-2.56/modules/file/spmxfile.c:518:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s += strlen(BLOODY_UTF8_BOM);
data/gwyddion-2.56/modules/file/stmprg.c:632:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr = filename_ta + strlen(filename_ta) - 1;
data/gwyddion-2.56/modules/file/surffile.c:643:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(surf.signature, "DIGITAL SURF", 12);
data/gwyddion-2.56/modules/file/surffile.c:648:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(surf.object_name, "SCRATCH", 30);
data/gwyddion-2.56/modules/file/surffile.c:649:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(surf.operator_name, "csm", 30);
data/gwyddion-2.56/modules/file/surffile.c:655:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(surf.reserved, " ", 8);
data/gwyddion-2.56/modules/file/surffile.c:659:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(surf.xaxis, "X", 16);
data/gwyddion-2.56/modules/file/surffile.c:660:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(surf.yaxis, "Y", 16);
data/gwyddion-2.56/modules/file/surffile.c:661:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(surf.zaxis, "Z", 16);
data/gwyddion-2.56/modules/file/surffile.c:668:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(surf.obsolete, " ", 12);
data/gwyddion-2.56/modules/file/surffile.c:677:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(surf.obsolete2, " ", 10);
data/gwyddion-2.56/modules/file/surffile.c:680:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(surf.client_zone, " ", 128);
data/gwyddion-2.56/modules/file/surffile.c:685:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(surf.reservedzone, " ", 34);
data/gwyddion-2.56/modules/file/surffile.c:714:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(surf.dx_unit, dxunittmp, 16);
data/gwyddion-2.56/modules/file/surffile.c:715:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(surf.dy_unit, dyunittmp, 16);
data/gwyddion-2.56/modules/file/surffile.c:716:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(surf.dz_unit, dzunittmp, 16);
data/gwyddion-2.56/modules/file/surffile.c:745:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(surf.zlength_unit, surf.dz_unit, 16);
data/gwyddion-2.56/modules/file/surffile.c:887:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(unit, units[i], 16);
data/gwyddion-2.56/modules/file/tescan.c:563:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(value))
data/gwyddion-2.56/modules/file/witec-asc.c:243:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
guint len = strlen(title);
data/gwyddion-2.56/modules/file/wsffile.c:265:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen((const gchar*)hvalue))
data/gwyddion-2.56/modules/file/wsffile.c:282:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(p);
data/gwyddion-2.56/modules/file/wsxmfile.c:181:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_convert(value, strlen(value), "UTF-8", "ISO-8859-1",
data/gwyddion-2.56/modules/file/wsxmfile.c:491:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hlen = strlen(header);
data/gwyddion-2.56/modules/file/xyzexport.c:204:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
decimal_dot_len = strlen(decimal_dot);
data/gwyddion-2.56/modules/file/zeiss.c:187:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
value = comment + strlen(SOMEWHAT_LESS_MAGIC_COMMENT);
data/gwyddion-2.56/modules/graph/graph_cd.c:482:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/gwyddion-2.56/modules/graph/graph_fdfit.c:669:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/gwyddion-2.56/modules/graph/graph_fit.c:709:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/gwyddion-2.56/modules/plugin-proxy.c:341:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rginames[2], pluginname, len + 1);
data/gwyddion-2.56/modules/plugin-proxy.c:342:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(rginames[2] + len + 1, "rgi", 4);
data/gwyddion-2.56/modules/plugin-proxy.c:344:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rginames[3], pluginname, len + 1);
data/gwyddion-2.56/modules/plugin-proxy.c:345:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(rginames[3] + len + 1, "RGI", 4);
data/gwyddion-2.56/modules/plugin-proxy.c:1032:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end = pat + strlen(pat) - 1;
data/gwyddion-2.56/modules/process/correct_affine.c:680:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(controls->vf->units))
data/gwyddion-2.56/modules/process/correct_affine.c:687:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(controls->vf->units))
data/gwyddion-2.56/modules/process/correct_affine.c:694:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(controls->vf->units))
data/gwyddion-2.56/modules/process/correct_affine.c:701:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(controls->vfphi->units))
data/gwyddion-2.56/modules/process/facet_analysis.c:895:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (units && strlen(units))
data/gwyddion-2.56/modules/process/facet_measure.c:616:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (units && strlen(units))
data/gwyddion-2.56/modules/process/measure_lattice.c:515:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(controls->vf->units))
data/gwyddion-2.56/modules/process/measure_lattice.c:522:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(controls->vf->units))
data/gwyddion-2.56/modules/process/measure_lattice.c:530:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(controls->vf->units))
data/gwyddion-2.56/modules/process/measure_lattice.c:538:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(controls->vfphi->units))
data/gwyddion-2.56/modules/process/neuraldata.h:365:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(value);
data/gwyddion-2.56/modules/process/polydistort.c:420:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(buf, "1");
data/gwyddion-2.56/modules/process/polydistort.c:422:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(buf, "y");
data/gwyddion-2.56/modules/process/polydistort.c:432:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(buf, "1");
data/gwyddion-2.56/modules/process/polydistort.c:434:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(buf, "x");
data/gwyddion-2.56/modules/pygwy/pygwy-console.c:341:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(command))
data/gwyddion-2.56/modules/pygwy/pygwy-console.c:616:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line))
data/gwyddion-2.56/modules/pygwy/pygwy-console.c:620:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strlen(line))
data/gwyddion-2.56/modules/tools/readvalue.c:830:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(gtk_entry_get_text(GTK_ENTRY(tool->xpix)))
data/gwyddion-2.56/modules/tools/readvalue.c:831:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
|| !strlen(gtk_entry_get_text(GTK_ENTRY(tool->ypix))))
data/gwyddion-2.56/modules/tools/rprofile.c:750:50: [1] (buffer) mismatch:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
gdouble xreal, yreal, dx, dy, xoff, yoff, h, mismatch;
data/gwyddion-2.56/modules/tools/rprofile.c:858:12: [1] (buffer) mismatch:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
return mismatch;
data/gwyddion-2.56/modules/tools/rprofile.c:882:36: [1] (buffer) mismatch:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
gdouble *mismatch)
data/gwyddion-2.56/modules/tools/selectionmanager.c:744:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gchar *s = (strlen(unitstr)
data/gwyddion-2.56/modules/volume/volume_asciiexport.c:387:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!info->decimal_dot || !(len = strlen(info->decimal_dot))) {
data/gwyddion-2.56/modules/volume/volume_fdfit.c:825:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/gwyddion-2.56/modules/volume/volume_slice.c:1205:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(vf->units) ? " " : "", vf->units,
data/gwyddion-2.56/modules/volume/volume_slice.c:1216:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(vf->units) ? " " : "", vf->units,
data/gwyddion-2.56/modules/volume/volume_slice.c:1227:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(vf->units) ? " " : "", vf->units,
data/gwyddion-2.56/plugins/dump.cc:45:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Dump::read(const char *filename)
data/gwyddion-2.56/plugins/invert_cpp.cc:57:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
dump.read(args[1]);
data/gwyddion-2.56/utils/dump-modules.c:93:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = g_markup_escape_text(contents, strlen(contents));
data/gwyddion-2.56/utils/dump-modules.c:128:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(s);
data/gwyddion-2.56/utils/dump-modules.c:144:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = s = g_new0(gchar, strlen(authors) + 1);
data/gwyddion-2.56/utils/dump-modules.c:154:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(p, authors, a - authors);
data/gwyddion-2.56/utils/dump-modules.c:162:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = s + strlen(s);
ANALYSIS SUMMARY:
Hits = 974
Lines analyzed = 542804 in approximately 15.04 seconds (36097 lines/second)
Physical Source Lines of Code (SLOC) = 406047
Hits@level = [0] 67 [1] 380 [2] 453 [3] 124 [4] 15 [5] 2
Hits@level+ = [0+] 1041 [1+] 974 [2+] 594 [3+] 141 [4+] 17 [5+] 2
Hits/KSLOC@level+ = [0+] 2.56374 [1+] 2.39874 [2+] 1.46288 [3+] 0.34725 [4+] 0.0418671 [5+] 0.00492554
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.