Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/bceafor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/wviiinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/ceainv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/goodinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/lamazfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/alconfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/gctp.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/molwinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/somfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/ceafor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/wivinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/sphdz.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/obleqinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/millinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/omerfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/orthinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/aziminv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/inv_init.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/untfz.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/equiinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplninv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/polyfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/paksz.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/robfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/alconinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/haminv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/sininv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/isinusinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/sinfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/tmfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/merinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/azimfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/polyinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/eqconfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/for_init.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/gvnspfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/alberinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/goodfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplnfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/molwfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/wviifor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/tminv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/gnominv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/imolwinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/lamccinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/millfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/hamfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/eqconinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/br_gctp.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/psinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/sterinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/merfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/vandgfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/lamccfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/cproj.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/robinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/alberfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/psfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/bceainv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/sominv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/equifor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/utmfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/imolwfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/gnomfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/orthfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/lamazinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/sterfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/isinusfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/vandginv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/omerinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/utminv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/obleqfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/gvnspinv.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/src/wivfor.c
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/include/gctp_prototypes.h
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/include/bcea.h
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/include/proj.h
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/include/cproj_prototypes.h
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/include/isin.h
Examining data/hdf-eos5-5.1.16.dfsg.1/gctp/include/cproj.h
Examining data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c
Examining data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c
Examining data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c
Examining data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c
Examining data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c
Examining data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c
Examining data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h
Examining data/hdf-eos5-5.1.16.dfsg.1/include/tutils.h
Examining data/hdf-eos5-5.1.16.dfsg.1/include/proj.h
Examining data/hdf-eos5-5.1.16.dfsg.1/include/ease.h
Examining data/hdf-eos5-5.1.16.dfsg.1/include/HE5_GctpFunc.h
Examining data/hdf-eos5-5.1.16.dfsg.1/include/isin.h
Examining data/hdf-eos5-5.1.16.dfsg.1/include/cproj.h
Examining data/hdf-eos5-5.1.16.dfsg.1/include/HE5_HdfEosDef.h
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/Common/runTests.cpp
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/tutils.h
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestProfile.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestSwath.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestAlias.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/tutils.h
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/tutils.h
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_gd_threads-1.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_gd_threads-2.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_sw_threads-2.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_sw_threads-1.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestZa.c
Examining data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_info.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_readdata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_setup.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_updatelevels.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrunlimfld.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_eh_readglobalattr.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_readdimscale.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_defexternalfld.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_defunlimfld.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_info.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_setup.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_subset.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_definefields.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_defexternalfld.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_datainfo.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_readdimscale.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readdimscale.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_rdexternaldata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_datainfo.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_rdexternaldata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_defexternalfld.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_setup.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_wrexternaldata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_subset.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readhdfeosinformationmetadata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_readattrs.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_readdata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrexternaldata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_rdexternaldata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_defunlimfld.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_readdata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrextendrd.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_datainfo.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writeAlldimscale.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writeattrs.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readdata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_definefields.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrunlimfld.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_setup.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_datainfo.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedimscale.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_info.c
Examining data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrexternaldata.c
Examining data/hdf-eos5-5.1.16.dfsg.1/config/cmake/xlatefile.c
Examining data/hdf-eos5-5.1.16.dfsg.1/config/cmake/EOSTests.c
Examining data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c
FINAL RESULTS:
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/Common/runTests.cpp:216:5: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod 755 $DIFF_ERROR_FILE
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/EOSTests.c:244:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(formatString, "%%%sd", *currentArg);
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/EOSTests.c:245:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(s, formatString, x);
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/xlatefile.c:26:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(argbuf, &argv[3][2]);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:112:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(err_file,efile);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:125:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(err_file,efile);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:146:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(parm_file,pfile);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:159:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(parm_file,pfile);
data/hdf-eos5-5.1.16.dfsg.1/include/HE5_HdfEosDef.h:493:88: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
herr_t HE5_EHchkfid(hid_t fid, const char *name, hid_t *HDFfid, hid_t *grpID, uintn *access);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_eh_readglobalattr.c:25:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(hdf_names[i], tmp);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readhdfeosinformationmetadata.c:82:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(coremeta, MetadataName);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_readdata.c:114:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(inInfo.fieldname[i], level.fieldname[i]);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_readdata.c:152:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(inInfo2.fieldname[0], level.fieldname[0]);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:101:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, srcdir);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:111:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp, "%lf %f %f %f %f %s", &time, &conc[0], &conc[1], &conc[2], &conc[3], spc) != -1)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:146:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, srcdir);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:157:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp, "%s %lf %lf %d %s", desc, &lon, &lat, &date, id) != -1)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:159:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(datbuf_2[n].Label, desc);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:184:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, srcdir);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:195:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp, "%lf %f %f %s", &time, &rain, &temp, id) != -1)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:233:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, srcdir);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:244:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp, "%s %d %d %s", desc, &date, &wgt, id) != -1)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:246:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(datbuf_4[n].Label, desc);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:268:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, srcdir);
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:279:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp, "%lf %lf %lf %f %f %s", &time, &lon, &lat, &rain, &temp, id) != -1)
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:178:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"INPUT ERROR: Parameter-pointer %s == NULL.\n", name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:213:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"HDF-EOS WARNING: The input parameter \"%s\" is a null pointer.\n", name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:221:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"HDF-EOS WARNING: The input string named \"%s\" contains illegal character.\n", name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1693:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"File \"%s\" cannot be opened. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1716:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"File \"%s\" cannot be created. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1739:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Group \"HDFEOS\" does not exist in \"%s\" file. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1751:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Warning: Group \"ADDITIONAL\" does not exist in \"%s\" file, the hdfeos5 files produced by hdfeos5.0 or an earlier version. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1763:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Warning: Group \"FILE_ATTRIBUTES\" does not exist in \"%s\" file. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1776:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Group \"HDFEOS INFORMATION\" does not exist in \"%s\" file. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1790:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Group \"HDFEOS\" does not exist in \"%s\" file. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1802:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Warning: Group \"ADDITIONAL\" does not exist in \"%s\" file, need to create it. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1823:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Group \"FILE_ATTRIBUTES\" does not exist in \"%s\" file, need to create it. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1844:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Group \"HDFEOS INFORMATION\" does not exist in \"%s\" file. \n", filename)
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1910:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(hdfeosVersion, "%s.%s", "HDFEOS_5", HE5_HDFEOSVERSION);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2163:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_HeosTable[i].filename, filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2200:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(version_buf1, version_buf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2390:81: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
HE5_EHchkfid(hid_t fid, const char *name, hid_t *HDFfid, hid_t *grpID, uintn *access)
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2428:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"HE5_EHchkid: File ID %ld not active (%s).\n",(long int) fid, name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2486:60: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid, "HE5_EHidinfo", HDFfid, gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2526:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filename, HE5_HeosTable[fid % HE5_EHIDOFFSET].filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2597:65: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid,"HE5_EHgetversion", &HDFfid, &gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3421:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(liststr, dstr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3486:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tempdimlist, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4235:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newmetaptr, metaptr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4256:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "SwathName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4260:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GridName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4264:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "PointName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4268:19: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "ZaName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4292:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GROUP=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4422:11: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newmetastr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4431:14: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot redefine the dimension \"%s\". \n", metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4458:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%li%s%li%s", "\t\t\tOBJECT=Dimension_",count,"\n\t\t\t\tDimensionName=\"",&metastr[0],"\"\n\t\t\t\tSize=", (long)metadata[0],"\n\t\t\tEND_OBJECT=Dimension_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4517:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%li%s%li%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4568:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4629:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4640:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, colon2 + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4645:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr2, "%s%li%s", "\n\t\t\tEND_OBJECT=GeoField_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4646:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, utlstr2);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4706:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4718:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, colon2 + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4723:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr2, "%s%li%s", "\n\t\t\tEND_OBJECT=DataField_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4724:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, utlstr2);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4781:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4793:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, colon2 + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4798:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr2, "%s%li%s", "\n\t\t\tEND_OBJECT=ProfileField_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4799:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, utlstr2);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4826:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4846:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, colon + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4862:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%li%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4906:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%s%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4920:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4929:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4939:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4948:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4956:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4999:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( newbuf, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5000:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( newbuf, metaptr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5284:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(metutlstr, "%s%d", "StructMetadata.", ism);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5290:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open %s dataset. \n",metutlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5459:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newmetaptr, metaptr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5480:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "SwathName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5484:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GridName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5488:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "PointName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5492:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "ZaName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5516:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GROUP=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5646:11: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newmetastr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5655:14: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot redefine the dimension \"%s\". \n", metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5682:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%li%s%li%s", "\t\t\tOBJECT=Dimension_",count,"\n\t\t\t\tDimensionName=\"",&metastr[0],"\"\n\t\t\t\tSize=", (long)metadata[0],"\n\t\t\tEND_OBJECT=Dimension_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5741:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%li%s%li%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5792:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5853:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5864:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, colon2 + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5869:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr2, "%s%li%s", "\n\t\t\tEND_OBJECT=GeoField_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5870:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, utlstr2);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5930:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5942:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, colon2 + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5947:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr2, "%s%li%s", "\n\t\t\tEND_OBJECT=DataField_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5948:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, utlstr2);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6005:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6017:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, colon2 + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6022:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr2, "%s%li%s", "\n\t\t\tEND_OBJECT=ProfileField_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6023:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, utlstr2);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6050:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6070:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, colon + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6086:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%li%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6130:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%s%s%s%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6144:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6153:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6163:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6172:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6180:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, metastr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6228:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(metutlstr, "%s%ld", "StructMetadata.", nmeta - 1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6237:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataspace for %s dataset. \n",metutlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6273:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create %s dataset. \n", metutlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6319:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( newbuf, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6320:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( newbuf, metaptr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6481:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(retstr, parameter);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6668:74: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid, "HE5_EHmetagroup_Static", &HDFfid, &grpID, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6827:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "SwathName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6829:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GridName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6831:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "PointName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6833:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "ZaName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6845:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GROUP=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6853:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s", "GROUP=", groupname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6856:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s", "\t\tEND_GROUP=", groupname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6862:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s", "\n\tEND_GROUP=");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7018:75: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid, "HE5_EHmetagroup_Dynamic", &HDFfid, &grpID, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7066:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(metutlstr, "%s%d", "StructMetadata.", ism);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7070:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open %s dataset. \n", metutlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7192:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Stored_meta[fid%HE5_EHIDOFFSET].saved_metabuf, metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7199:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(metabuf,Stored_meta[fid%HE5_EHIDOFFSET].saved_metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7229:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "SwathName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7231:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GridName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7233:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "PointName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7235:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "ZaName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7247:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GROUP=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7255:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s", "GROUP=", groupname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7258:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s", "\t\tEND_GROUP=", groupname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7264:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s", "\n\tEND_GROUP=");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7569:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create the data space for attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7588:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set the total size for the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7605:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create the data space for attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7633:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create the attribute \"%s\".\n",attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7699:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set the total size for the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7744:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Attribute \"%s\" not defined.", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7757:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type ID for attribute \"%s\".\n",attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7780:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read out data from the attribute \"%s\".\n",attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7864:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" \n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7943:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Attribute \"%s\" not defined.", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7957:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type ID for attribute \"%s\".\n",attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7970:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data space ID for attribute \"%s\".\n",attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7984:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the data type class ID for attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8000:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the size of string in attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8013:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the size of string in attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8027:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the number of elements in attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8038:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the number type in attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8052:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the size of in attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8167:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type ID for attribute \"%s\".\n", name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8176:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class for attribute \"%s\".\n", name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8218:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( ptr->name, name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8224:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( ptr->name, name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8312:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, " Cannot open \"%s\" file. Check the file name. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8368:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot close the group \"%s\". \n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8381:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot close the HDFEOS file \"%s\" . \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8484:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "No group/dataset named \"%s\" exists. \n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8512:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( objectlist, inout.name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8628:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open \"%s\" group. Group may not exist. \n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8649:27: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if(objectlist != NULL) strcpy( objectlist, inout.name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9214:67: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid,"HE5_EHwriteglbattr", &HDFfid, &gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9251:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\"to the \"FILE_ATTRIBUTES\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9352:66: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid,"HE5_EHreadglbattr", &HDFfid, &gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9380:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" from the \"FILE_ATTRIBUTES\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9456:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about global Attribute \"%s\" \n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9542:66: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid,"HE5_EHglbattrinfo", &HDFfid, &gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9570:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"FILE_ATTRIBUTES\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9673:66: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid,"HE5_EHinqglbattrs", &HDFfid, &gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9781:69: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid,"HE5_EHinqglbdatatype", &HDFfid, &gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9811:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9820:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9829:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9838:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9849:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" string attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9860:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9870:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10234:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "SwathName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10238:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GridName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10242:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "PointName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10246:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "ZaName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10263:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GROUP=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10292:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%li%s%li%s", "\t\t\tOBJECT=Dimension_",count,"\n\t\t\t\tDimensionName=\"",&metastr[0],"\"\n\t\t\t\tSize=", (long)metadata[0],"\n\t\t\tEND_OBJECT=Dimension_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10594:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(metutlstr, "%s%d", "StructMetadata.", ism);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10599:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open %s dataset. \n", metutlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10728:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "SwathName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10732:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GridName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10736:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "PointName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10740:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "ZaName=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10757:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "GROUP=\"", structname, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10797:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%li%s%s%s%li%s%li%s", "\t\t\tOBJECT=Dimension_",count,"\n\t\t\t\tDimensionName=\"",&metastr[0],"\"\n\t\t\t\tSize=", (long)metadata[0],"\n\t\t\tEND_OBJECT=Dimension_", count, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11395:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" from the \"FILE_ATTRIBUTES\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11810:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open external file:\"%s\".\n",extfilename) ;
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11854:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write to file:\"%s\".\n",extfilename) ;
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11868:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read from file:\"%s\".\n",extfilename) ;
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11902:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(metutlstr, "%s%ld", "StructMetadata.", *nmeta);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12196:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uintn access;
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12280:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(newAttrName, "%s", MetadataName);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12284:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(newAttrName, "%s.%d", MetadataName, i);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12297:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataspace for %s dataset.",newAttrName);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12323:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create %s dataset. \n", newAttrName);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12342:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(chunkBuffer_temp, chunkBuffer);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12349:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write in data to the %s dataset.",newAttrName);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12463:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uintn access;
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12573:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(newAttrName, "%s", MetadataName);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12577:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(newAttrName, "%s.%d", MetadataName, ism -1);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12644:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(metabufout, metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12760:19: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uintn access;
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12938:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(metadatanames, memb_name);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:240:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the file \"%s\". Check the file name. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:439:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Gridname \"%s\" must be less than %d characters.\n", gridname, HE5_OBJNAMELENMAX);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:520:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Grid \"%s\" already exists.", gridname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:545:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create \"%s\" group.\n", gridname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:581:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(header, "%s%li%s%s%s%s%li%s%s%li%s",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:587:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(footer,
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:607:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(refstr1, "%s%lf%s%lf%s","(", upleftpt[0], ",", upleftpt[1], ")");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:608:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(refstr2, "%s%lf%s%lf%s", "(", lowrightpt[0], ",", lowrightpt[1], ")");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:611:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s%s%s%s%s%s", header, "\t\tUpperLeftPointMtrs=", refstr1, "\n","\t\tLowerRightMtrs=", refstr2, "\n",footer);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:668:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_GDXGrid[ i ].gdname, gridname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:834:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( grpname, gridname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:845:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Grid:\"%s\" does not exist within HDF file.",gridname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:864:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Group \"Data Fields\" does not exist in \"%s\" grid.",gridname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:893:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_GDXGrid[ i ].gdname, gridname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:958:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, inout.name);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:990:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\" .\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1017:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_GDXGrid[ emptyslot ].ddataset[ i ].name, fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1118:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, message1, gridID, routname, idOffset, HE5_NGRID + idOffset);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1130:4: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, message2, gridID, routname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1150:50: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(*fid,"", &HDFfid, gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1435:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%li%s", (long)projparm[ i ], ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1440:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%g%s", projparm[i], ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1444:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%lf%s", projparm[i], ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1447:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(projparmbuf, utlbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1461:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf,
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1468:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf,
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1476:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf,
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1608:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s", "_BLKSOM");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3370:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", "\t\tGridOrigin=", originNames[origincode], "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3501:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", "\t\tPixelRegistration=", pixregNames[pixregcode], "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3643:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", dimname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3668:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension \"%s\" not found.", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4062:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Projection Code not defined for \"%s\".\n", HE5_GDXGrid[idx].gdname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4101:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Zone Code not defined for \"%s\".\n", HE5_GDXGrid[idx].gdname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4148:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sscanf(&utlstr[1], fmt,
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4159:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Projection parameters not defined for \"%s\".\n", HE5_GDXGrid[idx].gdname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4694:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4700:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fldname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4719:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", fldname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5181:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" not found.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5356:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fldname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5364:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5382:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", fldname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5409:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\".", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5423:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for \"%s\" dataset.", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5437:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for \"%s\" dataset.", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5461:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to see if string field is varaible or fixed length for the \"%s\" field.\n",fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5479:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the number type for \"%s\" dataset.", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5494:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot close the datatype \"%s\".", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5508:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot close the dataset \"%s\".", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5617:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimlist, dimstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5663:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(maxdimlist, maxdimstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5675:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataset ID for the \"%s\" field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5689:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataspace ID for the \"%s\" field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5703:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataset rank for the \"%s\" field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5717:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataset dimension sizes for the \"%s\" field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5732:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5825:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the field ID for the \"%s\" field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5836:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the property list ID for the \"%s\" data field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5847:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data space ID for the \"%s\" data field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6165:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(errmsg, errmsg1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6166:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(errmsg, errmsg2);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6232:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(gridname, HE5_GDXGrid[idx].gdname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6340:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tempname, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6350:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6354:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6359:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6365:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6372:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimlist0, dimbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6453:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6458:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6480:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find dimensions for \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6502:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6571:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6575:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6599:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find dimensions for \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6707:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Invalid number type for \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6727:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(compmethod, HE5_GDXGrid[idx].compmethod);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6739:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, errmsg, i, (unsigned long)dims[i],(unsigned long)HE5_GDXGrid[idx].tiledims[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6883:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set the total size for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6902:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6944:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6964:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set the total size for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6983:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7005:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7115:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( HE5_GDXGrid[idx].ddataset[HE5_GDXGrid[idx].nDFLD].name, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7199:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", fieldname, ":", dimlist0);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7228:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s",":\n\t\t\t\tMaxdimList=",maxdimlstbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7229:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf,utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7254:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s",":\n\t\t\t\tMaxdimList=",maxdimlstbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7255:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf,utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7260:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(compmethod, HE5_GDXGrid[idx].compmethod);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7266:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2, "%s%s", "\n\t\t\t\tCompressionType=", compmethod);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7270:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2, "%s%s", "\n\t\t\t\tCompressionType=", compmethod);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7276:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf, "%s%d,%d,%d,%d%s","\n\t\t\t\tCompressionParams=(", HE5_GDXGrid[idx].compparm[0], HE5_GDXGrid[idx].compparm[1], HE5_GDXGrid[idx].compparm[2], HE5_GDXGrid[idx].compparm[3], ")");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7277:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7283:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tDeflateLevel=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7284:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7290:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7291:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7297:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7298:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7304:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7305:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7311:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7312:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7318:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7319:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7325:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7326:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7332:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tDeflateLevel=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7333:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7339:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7340:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7346:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7347:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7353:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7354:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7360:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7361:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7367:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7368:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7374:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_GDXGrid[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7375:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7380:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7390:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%li","\n\t\t\t\tTilingDimensions=(", (long)HE5_GDXGrid[idx].tiledims[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7395:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2, "%s%li","\n\t\t\t\tTilingDimensions=(", (long)HE5_GDXGrid[idx].tiledims[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7401:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, parmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7404:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7516:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write attribute to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7631:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to retrieve the size of \"%s\" dimension. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7645:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot update the value for \"%s\" dimension in Metadata.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7800:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7825:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set dimension scale %s for the field %s. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7997:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8022:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set dimension scale %s for the field %s. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8209:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8321:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8336:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" does not exist for field \"%s\".\n",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8399:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for Dimension Scale \"%s\" field. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8865:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9202:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9230:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" does not exist for field \"%s\".\n",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9345:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for Dimension Scale \"%s\" field. \n", dimscalename);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9621:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimension scale dataset \"%s\" does not exist.\n",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9643:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9656:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9670:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" does not exist for field \"%s\".\n",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9684:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" is not dimension scale for a dimension in the field \"%s\".\n", dimname, fieldname );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9724:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataspace ID for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9736:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataset rank for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9748:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataset dimension sizes for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9762:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for \"%s\" dataset.",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9785:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to see if string field is varaible or fixed length for the \"%s\" field.\n",dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9799:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the number type for \"%s\" dataset.",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9825:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9859:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataspace ID for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10005:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10016:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"%s\" field.\n", attrname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10027:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10119:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10130:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\" for the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10139:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10193:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" \n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10266:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10281:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" associated with the dimension scale\"%s\".\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10292:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Will not retrieve information about internal Attribute \"%s\" associated with the dimension scale \"%s\" .\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10301:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10395:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", fieldname, ":", dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10580:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fldname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10588:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10611:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about %s field.\n", fldname );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10686:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tempname, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10696:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10700:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10705:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10711:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10718:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimlist0, dimbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10756:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimname[rankidx1],dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10766:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimname[rankidx1],dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10778:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimname[rankidx1],dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10783:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension \"%s\" not found.\n", dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10827:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10964:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get %s field ID.\n", fldname );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11003:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot extend dataset for the \"%s\" field.\n", fldname );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11030:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get %s field ID.\n", fldname );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11420:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write attribute to the field \"%s\".",fldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11754:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(temp_fieldname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11823:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11844:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12385:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to get information about \"%s\" data field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12517:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Data field \"%s\" not found. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12652:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12663:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12674:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12685:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12702:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12714:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12728:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12739:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12750:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12761:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12778:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12790:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12805:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12814:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12825:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12836:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12847:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12864:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12876:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12887:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13076:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, &valName[0][0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13314:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimnames, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13571:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_GDXGrid[idx].gdname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13795:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(fieldlist, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15776:19: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "GCTP Error: %s %s %s\n", "grid coordinates",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17342:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" not found.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17356:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "%s%s%s", errM1, errM2, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17413:8: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf( errbuf, errMesg, HE5_GDXRegion[regionID]->DimNamePtr[j]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17866:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" not found.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17881:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "%s%s%s", errM1, errM2, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17975:8: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, errMesg, HE5_GDXRegion[regionID]->DimNamePtr[j]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17994:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read data for the \"%s\" data field into data buffer.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18098:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_GDXRegion[i]->DimNamePtr[j],HE5_GDXRegion[oldRegionID]->DimNamePtr[j]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18336:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Vertical Field: \"%s\" not found.\n", vertObj);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18349:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Vertical Field: \"%s\" must be 1-dim.\n", vertObj);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19162:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" not found.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19178:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf,"\"XDim\" not present in dimlist for field \"%s\".\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19191:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf,"\"YDim\" not present in dimlist for field \"%s\".\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19616:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about \"%s\" data field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19632:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "\"XDim\" not present in dimlist for field: \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19646:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf,"\"YDim\" not present in dimlist for field: \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19899:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get \"%s\" field ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20168:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20179:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\" for the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20188:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20269:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20280:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"%s\" field.\n", attrname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20291:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20372:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20383:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" associated with the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20392:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20471:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20482:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" associated with the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20491:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20575:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, HE5_GDXGrid[idx].gdname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20577:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20678:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, HE5_GDXGrid[idx].gdname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20680:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20781:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\" for the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20880:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20981:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" associated with the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21080:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" associated with the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21193:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_GDXGrid[idx].gdname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21318:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, filelist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21495:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the property list ID for the \"%s\" data field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21551:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(filelist, filename);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21581:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Data field \"%s\" not found. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21668:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21689:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about alias \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21709:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about alias \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21717:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(actualname,namebuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21727:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(actualname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21805:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find \"%s\" field in grid. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21826:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,aliaslist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21855:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create an alias \"%s\" for \"%s\" field. \n", aliasname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21951:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot remove alias named \"%s\". \n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22057:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about \"%s\" alias. \n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22075:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"The object named \"%s\" is not a symbolic link.\n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22096:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the real name for the alias named \"%s\".\n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22167:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_GDXGrid[idx].gdname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22679:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff, fldalias);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22714:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpbuf, nameptr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22716:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(tmpbuf, nameptr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24030:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpString,strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24045:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strdatabuf[i], tmpString);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24055:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write attribute to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24081:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24330:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24352:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24676:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read attribute from the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24803:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char *)buffer,strdatabuf[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24810:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat((char *)buffer,strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25039:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write data to the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25057:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write data to the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29105:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write \"%s\" field metadata.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29226:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for field %s. \n", dimname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29286:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for field %s. \n", dimscalename, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29346:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for all grid fields. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29406:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for all grid fields. \n", dimscalename);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29467:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get dimension scale %s for field %s. \n", dimname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29519:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read attribute %s for dimension scale %s. \n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29576:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write attribute %s for dimension scale %s. \n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29654:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot retrieve attribute info for the %s dimension scale. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29752:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot retrieve attribute info for the %s dimension scale. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29815:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find the attribute %s for dimension scale %s. \n",attrnames,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29873:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(lastables,ptr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:30006:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:30079:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:30083:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:30107:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension(s) \"%s\" not found for \"%s\" field. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:324:57: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid, pointname, &HDFfid, &gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:337:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Pointname \"%s\" must be less than %d characters.\n", pointname, HE5_OBJNAMELENMAX);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:396:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Point \"%s\" already exists.", pointname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:409:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create \"%s\" group.\n", pointname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:483:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%li%s%s%s","\tGROUP=POINT_", nPoint + 1,"\n\t\tPointName=\"", pointname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:489:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2, "%s%li%s","\tEND_GROUP=POINT_", nPoint + 1, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:490:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:495:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot insert metadata for the \"%s\" point.\n", pointname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:522:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_PTXPoint[ i ].ptname, pointname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:599:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, message1, pointID, routname, idOffset, (long)(HE5_NPOINT + idOffset) );
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:610:4: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, message2, pointID, routname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:623:50: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(*fid,"", &HDFfid, gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:717:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( grpname, pointname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:728:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Point:\"%s\" does not exist within HDF-EOS file.\n",pointname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:740:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the \"Data\" group in \"%s\" Point", pointname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:752:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the \"Linkage\" group in \"%s\" Point", pointname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:774:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_PTXPoint[ i ].ptname, pointname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:842:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tempname, tmpdata.level[i].name);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:849:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpdata.level[j].name, tempname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:873:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_PTXPoint[ emptyslot ].level[ i ].name, tmpdata.level[ i ].name);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1326:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_PTXPoint[idx].ptname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1738:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fldlist,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1754:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(fldlist,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1783:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldlist, fldlist);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1871:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(levelname,HE5_PTXPoint[ idx ].level[ level ].name) ;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1920:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( ptr->level[i].name, name );
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2024:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Levelname \"%s\" more than %d characters.\n", levelname, HE5_OBJNAMELENMAX);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2217:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_PTXPoint[idx].level[nlevels].name, levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2281:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%d%s%d", "BCKPOINTER:", nlevels, "->", nlevels - 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2345:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%d%s%d", "FWDPOINTER:", nlevels - 1,"->", nlevels);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2535:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2707:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, HE5_PTXPoint[idx].level[i].name);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2727:8: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, mess, linkfield, parent);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2745:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, HE5_PTXPoint[idx].level[i].name);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2765:8: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, mess, linkfield, parent);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2782:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Parent Level: \"%s\" not found.\n", parent);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2794:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Child Level: \"%s\" not found.\n", child);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2805:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Parent/Child Levels not adjacent \"%s/%s\".\n", parent, child);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2814:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s%s%s", parent, "/", child, ":", linkfield);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2818:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot insert metadata for the \"%s\" point\n", HE5_PTXPoint[idx].ptname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4278:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4286:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype ID for \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4295:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4305:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype byte order for \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4321:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype size for \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4352:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4361:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype ID for \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4369:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4379:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype byte order for \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4395:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype size for \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4426:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4434:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4443:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype ID for \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4452:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4463:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype byte order for \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4479:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype size for \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4746:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_PTXPoint[idx].ptname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4843:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\"to the \"Data\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4939:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" from the \"Data\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5036:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"Data\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5132:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"Data\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5215:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_PTXPoint[idx].ptname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5318:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" level dataset ID.\n", levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5330:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\"to the \"%s\" level.\n", attrname,levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5339:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" level dataset ID.\n", levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5438:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" level dataset ID.\n", levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5449:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" from the \"%s\" level.\n", attrname, levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5458:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" level dataset ID.\n", levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5558:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" level dataset ID.\n", levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5569:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"%s\" level.\n", attrname,levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5578:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" level dataset ID.\n", levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5678:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" level dataset ID.\n", levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5689:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"%s\" level.\n", attrname,levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5698:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" level dataset ID.\n", levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5784:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, HE5_PTXPoint[idx].ptname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5786:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname,levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5878:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get pointer to metadata buffer for the \"%s\" point. \n", HE5_PTXPoint[pID].ptname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5888:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name1, HE5_PTXPoint[pID].level[level - 1].name);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5889:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name2, HE5_PTXPoint[pID].level[level].name);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5895:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name1, HE5_PTXPoint[pID].level[level].name);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5896:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name2, HE5_PTXPoint[pID].level[level+1].name);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5902:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s", "\t\t\t\tParent=\"", name1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5915:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get \"LinkField\" metavalue for the \"%s\" point. \n", HE5_PTXPoint[pID].ptname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5997:8: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf( errbuf, mess, level, level - 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6005:4: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf( errbuf, mess, level, level - 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6072:8: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf( errbuf, mess, level, level + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6080:4: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf( errbuf, mess, level, level + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6303:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, mess, level, level - 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7048:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%d%s%d", "BCKPOINTER:", level, "->", level - 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7245:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, mess, level, level - 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7257:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%d%s%d","BCKPOINTER:", level, "->", level - 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7485:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%d%s%d", "FWDPOINTER:", level, "->", level+1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7741:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%d%s%d", "FWDPOINTER:", level, "->", level + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7749:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\". \n", utlbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7997:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field: \"%s\" does not exist.\n", utlbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9167:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field: \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9577:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field: \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10182:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field: \"%s\" does not exist.\n", utlbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10299:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field: \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10793:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write data to the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10812:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write data to the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11243:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Group Attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11299:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"%s\" level.\n", attrname,levelname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12829:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12941:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13832:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get pointer to metadata buffer for the \"%s\" point. \n", HE5_PTXPoint[pID].ptname);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13846:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get \"LevelName\" metavalue for the \"%s\" point. \n", HE5_PTXPoint[pID].ptname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:364:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the file \"%s\". Check the file name. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:469:63: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid, "HE5_SWcreate", &HDFfid, &gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:494:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Swath name \"%s\" must be less than %d characters.\n", swathname, HE5_OBJNAMELENMAX);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:564:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Swath \"%s\" already exists.\n", swathname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:585:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot create the \"%s\" group.\n", swathname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:666:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%li%s%s%s", "\tGROUP=SWATH_", nSwath + 1, "\n\t\tSwathName=\"", swathname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:681:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2, "%s%li%s","\tEND_GROUP=SWATH_", nSwath + 1, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:682:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:736:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[i].swname, swathname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:892:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( grpname, swathname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:904:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Swath \"%s\" does not exist within HDF-EOS file.\n",swathname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:976:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[i].swname, swathname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:995:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpname1,grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1047:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, inout.name);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1086:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\". \n",fldname );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1114:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[emptyslot].ddataset[i].name, fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1146:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpname2,grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1198:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, inout.name);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1233:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\". \n",fldname );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1261:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[emptyslot].gdataset[i].name, fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1295:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpname3,grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1346:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, inout.name);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1384:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the profile dataset \"%s\". \n",fldname );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1412:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[emptyslot].pdataset[i].name, fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1495:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, message1, swathID, routname, idOffset, HE5_NSWATH + idOffset);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1506:4: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, message2, swathID, routname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1524:50: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(*fid,"", &HDFfid, gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1614:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot insert the value for \"%s\" dimension into Metadata.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1702:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to retrieve the size of \"%s\" dimension. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1716:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot update the value for \"%s\" dimension in Metadata.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1869:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1894:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set dimension scale %s for the field %s. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1973:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1998:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set dimension scale %s for the field %s. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2167:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2192:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set dimension scale %s for the field %s. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2271:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2296:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set dimension scale %s for the field %s. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2463:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2503:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2526:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" does not exist for field \"%s\".\n",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2584:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for Dimension Scale \"%s\" field. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2837:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2877:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2900:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" does not exist for field \"%s\".\n",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2959:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for Dimension Scale \"%s\" field. \n", dimscalename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3170:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimension scale dataset \"%s\" does not exist.\n",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3209:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3222:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3236:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" does not exist for field \"%s\".\n",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3250:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" is not dimension scale for a dimension in the field \"%s\".\n", dimname, fieldname );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3290:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataspace ID for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3302:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataset rank for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3314:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataset dimension sizes for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3328:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for \"%s\" dataset.",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3351:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to see if string field is varaible or fixed length for the \"%s\" field.\n",dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3365:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the number type for \"%s\" dataset.",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3391:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3425:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataspace ID for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3570:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3581:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"%s\" field.\n", attrname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3592:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3686:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3697:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\" for the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3706:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3759:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" \n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3832:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3847:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" associated with the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3858:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Will not retrieve information about internal Attribute \"%s\" associated with the dimension scale \"%s\" .\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3867:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3941:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", dimname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3975:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "The Dimension \"%s\" not found in metadata. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4064:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s%s%s", "\t\t\t\tGeoDimension=\"", geodim, "\"\n\t\t\t\tDataDimension=\"", datadim, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4174:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"The geolocation dimension name \"%s\" is null.. \n", geodim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4187:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s%s", "_INDEXMAP:", geodim, ",", datadim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4195:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"The \"%s\" dataset not found. \n", utlbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4267:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to retrieve the size of \"%s\" dimension. \n", geodim) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4387:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4393:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4407:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", fieldname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4423:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", fieldname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4436:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", fieldname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4971:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4996:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about alias \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5016:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about alias \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5024:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(actualname,namebuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5034:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(actualname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5193:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", fieldname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5220:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset for the \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5233:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for the \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5246:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5268:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to see if string field is varaible or fixed length for the \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5285:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the number type for the \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5298:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the datatype ID for the \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5311:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5378:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimlist, dimstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5418:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(maxdimlist, maxdimstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5566:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5574:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5590:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Field \"%s\" not found. Check out the field name. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5672:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the field ID for the \"%s\" field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5683:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the property list ID for the \"%s\" data field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5694:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data space ID for the \"%s\" data field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5827:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Geolocation dimension \"%s\" not found.", geodim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5840:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Data dimension \"%s\" not found.", datadim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5850:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mapname, "%s%s%s", geodim, "/", datadim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5944:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Geolocation dimension \"%s\" not found. \n", geodim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5957:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Data dimension \"%s\" not found. \n", datadim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5971:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s%s", "_INDEXMAP:", geodim, ",", datadim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6008:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mapname, "%s%s%s", geodim, "/", datadim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7734:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7777:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7781:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7802:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension(s) \"%s\" not found for \"%s\" field. \n", utlbuf, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7832:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7874:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7878:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7899:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension(s) \"%s\" not found for \"%s\" field. \n", utlbuf, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8053:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set HDF5 datatype size for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8065:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8078:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set HDF5 datatype size for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8090:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8105:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8119:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot extend the dataset for \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8169:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[idx].gdataset[HE5_SWXSwath[idx].nGFLD].name, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8214:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[idx].ddataset[HE5_SWXSwath[idx].nDFLD].name, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8287:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", fieldname,":",dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8296:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot convert the input \"%s\" list to the metadata list. \n", maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8301:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s",":\n\t\t\t\tMaxdimList=", maxdimlstbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8302:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf,utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8310:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot convert the input \"%s\" list to the metadata list.\n", dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8315:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s",":\n\t\t\t\tMaxdimList=", dimlstbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8316:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf,utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8324:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s","\n\t\t\t\tCompressionType=", HDFcomp[compcode]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8330:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8337:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8343:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tDeflateLevel=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8344:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8349:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8350:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8355:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8356:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8361:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8362:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8367:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8368:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8373:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8374:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8379:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8380:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8385:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tDeflateLevel=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8386:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8391:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8392:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8397:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8398:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8403:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8404:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8409:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8410:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8415:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8416:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8421:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8422:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8439:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8479:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot insert metadata for \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8516:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write attribute to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8782:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", fieldname, ":", dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8887:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", fieldname, ":", dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9247:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9387:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimnames, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9520:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimmaps, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9529:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimmaps, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9683:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(idxmaps, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9703:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(idxmaps, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9882:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, utlstr2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9897:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(fieldlist, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9923:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\". \n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10002:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot close the datatype \"%s\". \n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10015:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot close the dataset \"%s\". \n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10294:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10324:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10334:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10344:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10354:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10370:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10381:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10396:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10406:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10416:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10426:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10442:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10453:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10469:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10478:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10488:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10498:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10508:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10524:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10535:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10545:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10728:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, &valName[0][0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11028:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about \"%s\" field. \n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11057:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about \"%s\" field. \n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11194:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11202:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11220:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11238:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf,maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11730:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write attribute to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12117:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12137:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12286:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12292:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12302:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name, HE5_SWXSwath[idx].gdataset[i].name);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12321:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name, HE5_SWXSwath[idx].ddataset[i].name);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12342:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name, HE5_SWXSwath[idx].pdataset[i].name);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12366:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot find \"%s\" field in Swath. Check the spelling.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13612:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(geodim,dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14749:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" not found.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14800:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Vertical Dimension Not Found: \"%s\".\n", HE5_SWXRegion[regionID]->DimNamePtr[j]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14838:23: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(geodim, tgeodim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15066:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Mapping Not Defined for \"%s\" Dimension.\n", geodim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15422:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Vertical Field: \"%s\" not found.\n", vertObj);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15481:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Vertical Field: \"%s\" must be 1-dim.\n", vertObj);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15930:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set fill value for \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16018:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the field ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16063:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the property list ID for the \"%s\" data field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16079:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type ID for the \"%s\" data field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16095:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get fill value for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16111:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release data type ID for the \"%s\" dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16127:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release property list ID for the \"%s\" dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16287:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Field \"%s\" Not Found.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16323:19: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(geodim, tgeodim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16501:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Mapping Not Defined for \"%s\" Dimension.\n", geodim);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16536:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, errMesg, HE5_SWXRegion[regionID]->DimNamePtr[j]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17035:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstrr, "%s%s%s", "\t\t\t\tGeoDimension=\"", geodim, "\"\n\t\t\t\tDataDimension=");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17051:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstri, "%s%s%s", "\t\t\t\tGeoDimension=\"", geodim, "\"\n\t\t\t\tDataDimension=");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17220:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "field \"%s\" is not in Swath. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17312:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\"to the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17403:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" from the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17494:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17585:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17670:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17771:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write attribute \"%s\"to the \"Geolocation Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17861:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read attribute \"%s\" from the \"Geolocation Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17949:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about attribute \"%s\" in the \"Geolocation Fields\" group.\n",attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18037:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about attribute \"%s\" in the \"Geolocation Fields\" group.\n",attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18120:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18234:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18256:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" group.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18268:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18280:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\" for the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18292:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18304:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" group ID.\n",grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18401:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field. \n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18423:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" group.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18435:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18447:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"%s\" field.\n", attrname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18459:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18471:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" group ID.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18568:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field. \n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18589:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" group.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18601:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18613:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"%s\" group.\n", attrname, grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18625:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18734:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field. \n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18755:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" group.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18767:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18779:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"%s\" group.\n", attrname, grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18791:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18890:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18892:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18995:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19013:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19014:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19015:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19197:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19239:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19243:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19264:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension(s) \"%s\" not found for \"%s\" profile. \n", utlbuf, profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19293:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19335:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19339:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19360:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension(s) \"%s\" not found for \"%s\" profile. \n", utlbuf, profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19498:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot create the VL-data type for \"%s\" profile.\n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19511:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot create dataset for \"%s\" profile. \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19524:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot extend the dataset for \"%s\" profile.\n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19570:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[idx].pdataset[HE5_SWXSwath[idx].nPROF].name, profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19586:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", profilename,":",dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19595:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot convert the input \"%s\" list to the metadata list. \n", maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19600:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s",":\n\t\t\t\tMaxdimList=", maxdimlstbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19601:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf,utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19609:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot convert the input \"%s\" list to the metadata list.\n", dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19614:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s",":\n\t\t\t\tMaxdimList=", dimlstbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19615:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf,utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19627:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s","\n\t\t\t\tCompressionType=", HDFcomp[compcode]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19633:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19640:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19646:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tDeflateLevel=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19647:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19652:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19653:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19658:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19659:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19664:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19665:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19670:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19671:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19676:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19677:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19682:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19683:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19688:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tDeflateLevel=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19689:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19694:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19695:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19700:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19701:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19706:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19707:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19712:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19713:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19718:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19719:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19724:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_SWXSwath[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19725:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19742:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19779:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot insert metadata for \"%s\" profile.\n",profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19952:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the profile \"%s\". \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19964:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create the property list for the profile \"%s\". \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19976:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype ID for the profile \"%s\". \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19988:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data space ID for the profile \"%s\". \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20157:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set data buffer for the profile \"%s\". \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20168:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the profile \"%s\". \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20180:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot reclaim the write VL data for the profile \"%s\". \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20370:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the profile dataset \"%s\". \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20382:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the space ID for the profile dataset \"%s\".\n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20501:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read the data from profile dataset \"%s\".\n",profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20817:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(groupname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20841:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(profnames,profdata.name);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20859:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, profdata.name);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20892:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the profile \"%s\" dataset.\n", prname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21127:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open \"%s\" profile.\n", profname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21149:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get rank of \"%s\" profile.\n", profname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21252:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", profname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21322:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimlist, dimstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21362:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(maxdimlist, maxdimstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21457:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write attribute \"%s\"to the \"Profile Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21546:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read attribute \"%s\" from the \"Profile Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21634:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about attribute \"%s\" in the \"Profile Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21722:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about attribute \"%s\" in the \"Profile Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21805:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21907:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find \"%s\" field in swath. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21928:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,aliaslist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21957:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create an alias \"%s\" for \"%s\" field. \n", aliasname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22059:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot remove alias named \"%s\". \n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22130:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22216:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22342:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about \"%s\" alias. \n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22360:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"The object named \"%s\" is not a symbolic link.\n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22381:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the real name for the alias named \"%s\".\n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22674:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff, fldalias);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22709:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpbuf, nameptr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22711:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(tmpbuf, nameptr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22872:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot change the field name from \"%s\" to \"%s\". \n", oldfieldname, newfieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22885:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[idx].ddataset[k].name, newfieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22894:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[idx].gdataset[k].name, newfieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22903:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_SWXSwath[idx].pdataset[k].name, newfieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22975:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22992:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open external file named \"%s\". \n", extfilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23005:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot mount external file onto \"%s\" group. \n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23077:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23092:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot unmount external file from \"%s\" group. \n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23177:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_SWXSwath[idx].swname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23374:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, filelist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23517:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the field ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23528:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the property list ID for the \"%s\" data field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23579:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(filelist, filename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23703:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", object);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23710:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimlist, tempdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23721:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", object);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23880:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about \"%s\" field. \n", object);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23890:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", "Longitude");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23972:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to retrieve the size of \"%s\" dimension. \n", geodimbuf) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24084:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24092:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24130:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read attribute from the field \"%s\".",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24238:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the file \"%s\". Check the file name. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24363:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot attach to the Swath \"%s\". \n", swathname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24990:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot define \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25209:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf , "Compression information for \"%s\" not found.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25371:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpString,strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25386:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strdatabuf[i], tmpString);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25396:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write attribute to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25422:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25673:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25695:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25852:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write data to the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25872:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write data to the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25940:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set fill value for the field \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25993:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get fill value for the field \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26127:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read data from the \"%s\" field.",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26145:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26291:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read attribute from the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26328:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read data from the \"%s\" field.",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26418:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char *)buffer,strdatabuf[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26426:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat((char *)buffer,strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26455:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26568:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" from the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26623:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read attribute \"%s\" from the \"Geolocation Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26839:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"%s\" field.\n", attrname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28118:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28240:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30325:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot define \"%s\" profile.\n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30440:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open \"%s\" profile.\n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30613:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to \"%s\" profile. \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30738:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open \"%s\" profile.\n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30879:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read data from \"%s\" profile. \n", profilename);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31394:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read attribute \"%s\" from the \"Profile Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32647:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write \"%s\" field metadata.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32759:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write \"%s\" field metadata.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32877:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for field %s. \n", dimname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32937:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for field %s. \n", dimname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32998:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for all fields in swath. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33058:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for all fields in swath. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33119:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get dimension scale %s for field %s. \n", dimname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33171:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read attribute %s for dimension scale %s. \n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33228:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write attribute %s for dimension scale %s. \n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33305:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot retrieve attribute info for the %s dimension scale. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33400:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot retrieve attribute info for the %s dimension scale. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33463:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find the attribute %s for dimension scale %s. \n",attrnames,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33564:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33610:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33614:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33637:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension(s) \"%s\" not found for \"%s\" field. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:232:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the file \"%s\". Check the file name. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:312:63: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(fid, "HE5_ZAcreate", &HDFfid, &gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:338:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "za name \"%s\" must be less than %d characters.\n", zaname, HE5_OBJNAMELENMAX);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:408:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "za \"%s\" already exists.\n", zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:429:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot create the \"%s\" group.\n", zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:481:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%li%s%s%s", "\tGROUP=ZA_", nza + 1, "\n\t\tZaName=\"", zaname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:490:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2, "%s%li%s","\tEND_GROUP=ZA_", nza + 1, "\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:491:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:543:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_ZAXZa[i].zaname, zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:681:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( grpname, zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:693:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "za \"%s\" does not exist within HDF-EOS file.\n",zaname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:734:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_ZAXZa[i].zaname, zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:753:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpname,grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:805:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, inout.name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:844:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\". \n",fldname );
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:872:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_ZAXZa[emptyslot].ddataset[i].name, fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:958:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, message1, zaID, routname, idOffset, HE5_NZA + idOffset);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:969:4: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(errbuf, message2, zaID, routname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:987:50: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
status = HE5_EHchkfid(*fid,"", &HDFfid, gid, &access);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1074:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot insert the value for \"%s\" dimension into Metadata.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1228:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1253:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set dimension scale %s for the field %s. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1422:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Field \"%s\" not found.\n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1447:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set dimension scale %s for the field %s. \n",
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1605:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1629:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1643:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" does not exist for field \"%s\".\n",
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1701:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for Dimension Scale \"%s\" field. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1907:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1931:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1945:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" does not exist for field \"%s\".\n",
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2004:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for Dimension Scale \"%s\" field. \n", dimscalename);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2179:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimension scale dataset \"%s\" does not exist.\n",
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2201:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2214:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2227:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" does not exist for field \"%s\".\n",
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2241:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( errbuf, "Dimname \"%s\" is not dimension scale for a dimension in the field \"%s\".\n", dimname, fieldname );
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2281:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataspace ID for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2293:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataset rank for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2305:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataset dimension sizes for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2319:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for \"%s\" dataset.",
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2342:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to see if string field is varaible or fixed length for the \"%s\" field.\n",dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2356:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the number type for \"%s\" dataset.",
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2382:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2416:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the dataspace ID for the \"%s\" dataset.\n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2561:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2572:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"%s\" field.\n", attrname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2583:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2676:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2687:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\" for the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2696:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2771:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2786:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" associated with the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2797:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Will not retrieve information about internal Attribute \"%s\" associated with the dimension scale \"%s\" .\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2806:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2883:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2898:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" associated with the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2909:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Will not retrieve information about internal Attribute \"%s\" associated with the dimension scale \"%s\" .\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2918:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3003:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, HE5_ZAXZa[idx].zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3005:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3076:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", dimname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3110:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "The Dimension \"%s\" not found in metadata. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3213:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3219:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3233:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", fieldname, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3611:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3632:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about alias \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3652:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about alias \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3660:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(actualname,namebuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3670:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(actualname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3793:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlstr, "%s%s%s", "\"", za_name, "\"\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3817:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset for the \"%s\" field.\n",za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3830:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for the \"%s\" field.\n",za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3843:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" field.\n",za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3865:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Failed to see if string field is varaible or fixed length for the \"%s\" field.\n",za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3882:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the number type for the \"%s\" field.\n",za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3895:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the datatype ID for the \"%s\" field.\n",za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3908:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" field.\n",za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3975:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimlist, dimstr);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4015:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(maxdimlist, maxdimstr);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4158:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4166:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4177:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Field \"%s\" not found. Check out the field name. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5867:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5909:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5913:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5934:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension(s) \"%s\" not found for \"%s\" field. \n", utlbuf, za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5963:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf, maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6005:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6009:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, dimcheck);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6030:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Dimension(s) \"%s\" not found for \"%s\" field. \n", utlbuf, za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6172:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set the total size for \"%s\" field. \n", za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6184:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for \"%s\" field. \n", za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6197:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set the total size for \"%s\" field. \n", za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6209:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for \"%s\" field. \n", za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6225:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create dataset for \"%s\" field. \n", za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6239:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot extend the dataset for \"%s\" field.\n", za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6286:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_ZAXZa[idx].ddataset[HE5_ZAXZa[idx].nDFLD].name, za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6351:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", za_name,":",dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6360:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot convert the input \"%s\" list to the metadata list. \n", maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6365:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s",":\n\t\t\t\tMaxdimList=", maxdimlstbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6366:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf,utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6374:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot convert the input \"%s\" list to the metadata list.\n", dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6379:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s",":\n\t\t\t\tMaxdimList=", dimlstbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6380:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf,utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6388:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf2,"%s%s","\n\t\t\t\tCompressionType=", HDFcomp[compcode]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6394:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6401:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6407:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tDeflateLevel=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6408:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6413:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6414:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6419:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6420:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6425:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6426:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6431:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6432:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6437:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6438:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6443:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6444:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6449:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tDeflateLevel=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6450:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6455:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6456:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6461:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6462:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6467:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6468:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6473:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6474:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6479:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6480:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6485:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(compparmbuf,"%s%d","\n\t\t\t\tBlockSize=", HE5_ZAXZa[idx].compparm[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6486:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf2, compparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6503:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlbuf, utlbuf2);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6539:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot insert metadata for \"%s\" field.\n", za_name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6576:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write attribute to the field \"%s\".",za_name) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6725:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(utlbuf, "%s%s%s", fieldname, ":", dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7082:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_ZAXZa[idx].zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7222:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dimlist, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7389:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utlstr, utlstr2);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7404:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(fieldlist, utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7427:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset \"%s\". \n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7507:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot close the datatype \"%s\". \n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7520:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot close the dataset \"%s\". \n", tempfield);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7708:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7733:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the dataset for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7743:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the datatype for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7753:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7763:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7779:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7790:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7804:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7814:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7824:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7834:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7850:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7861:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7877:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7886:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7896:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7906:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type class ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7916:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type order for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7932:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type size for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7943:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7953:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release the dataset ID for the \"%s\" attribute.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8038:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the field ID for the \"%s\" field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8049:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the property list ID for the \"%s\" data field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8060:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data space ID for the \"%s\" data field.\n", fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8284:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(utlstr, &valName[0][0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8517:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8525:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8543:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about \"%s\" field. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8561:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dimbuf,maxdimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9048:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write attribute to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9491:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldactualname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9497:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fieldname,fldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9507:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name, HE5_ZAXZa[idx].ddataset[i].name);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9526:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot find \"%s\" field in za. Check the spelling.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9859:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set fill value for \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9937:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the field ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9948:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the property list ID for the \"%s\" data field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9959:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the data type ID for the \"%s\" data field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9970:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get fill value for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9981:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release data type ID for the \"%s\" dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9992:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot release property list ID for the \"%s\" dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10141:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "field \"%s\" is not in ZA. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10234:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\"to the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10323:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" from the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10410:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10497:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10579:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_ZAXZa[idx].zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10689:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10705:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" group.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10717:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10729:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write Attribute \"%s\" for the \"%s\" field.\n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10741:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10753:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" group ID.\n",grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10844:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field. \n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10860:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" group.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10872:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10884:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"%s\" field.\n", attrname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10896:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10908:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" group ID.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10996:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field. \n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11011:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" group.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11023:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11035:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"%s\" group.\n", attrname, grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11047:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11148:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field. \n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11163:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" group.\n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11175:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot open the \"%s\" field dataset.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11187:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot retrieve information about Attribute \"%s\" in the \"%s\" group.\n", attrname, grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11199:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot release the \"%s\" field dataset ID.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11310:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the group flag for \"%s\" field.\n",fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11322:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, HE5_ZAXZa[idx].zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11323:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11324:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(dtsname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11419:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find \"%s\" field in za. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11440:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,aliaslist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11469:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot create an alias \"%s\" for \"%s\" field. \n", aliasname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11566:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot remove alias named \"%s\". \n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11638:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_ZAXZa[idx].zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11760:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get information about \"%s\" alias. \n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11778:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"The object named \"%s\" is not a symbolic link.\n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11799:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get the real name for the alias named \"%s\".\n", aliasname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12006:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff, fldalias);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12041:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpbuf, nameptr);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12043:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(tmpbuf, nameptr);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12209:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot change the field name from \"%s\" to \"%s\". \n", oldfieldname, newfieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12222:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(HE5_ZAXZa[idx].ddataset[k].name, newfieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12292:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_ZAXZa[idx].zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12303:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open external file named \"%s\". \n", extfilename);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12316:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot mount external file onto \"%s\" group. \n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12386:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_ZAXZa[idx].zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12395:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot unmount external file from \"%s\" group. \n", grpname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12480:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(grpname, HE5_ZAXZa[idx].zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12670:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, filelist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12812:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the field ID for the \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12823:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot get the property list ID for the \"%s\" data field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12874:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(filelist, filename);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12992:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot open the file \"%s\". Check the file name. \n", filename);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13117:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot attach to the za \"%s\". \n", zaname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13436:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot define \"%s\" field.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13652:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf , "Compression information for \"%s\" not found.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13813:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpString,strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13828:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strdatabuf[i], tmpString);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13838:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write attribute to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13864:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14065:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot write data to the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14221:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write data to the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14241:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write data to the attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14309:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot set fill value for the field \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14362:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get fill value for the field \"%s\".\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14492:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read data from the \"%s\" field.",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14510:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14657:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read attribute from the field \"%s\".",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14694:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot read data from the \"%s\" field.",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14784:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char *)buffer,strdatabuf[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14791:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat((char *)buffer,strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14820:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Fieldname \"%s\" does not exist.",fieldname) ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14933:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" from the \"Data Fields\" group.\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15146:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read Attribute \"%s\" associated wth the \"%s\" field.\n", attrname,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15859:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15977:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get information about attribute \"%s\".\n", attrname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17638:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write \"%s\" field metadata.\n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17760:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for field %s. \n", dimname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17821:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for field %s. \n", dimname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17881:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for all fields in ZA. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17940:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot set dimension scale %s for all fields in ZA. \n", dimname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18001:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot get dimension scale %s for field %s. \n", dimname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18053:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot read attribute %s for dimension scale %s. \n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18109:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf,"Cannot write attribute %s for dimension scale %s. \n", attrname, fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18186:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot retrieve attribute info for the %s dimension scale. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18283:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot retrieve attribute info for the %s dimension scale. \n", fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18346:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Cannot find the attribute %s for dimension scale %s. \n",attrnames,fieldname);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:27:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, srcdir);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:29:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(namebuf, filename);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:33:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(namebuf, filename);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1176:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp_in, "%lf %f %f %f %f %s", &time, &conc[0], &conc[1], &conc[2], &conc[3], spc) != -1)
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1307:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp_in, "%s %lf %lf %d %s", desc, &lon, &lat, &date, id) != -1)
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1309:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(datbuf_2[n].label, desc);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1367:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp_in, "%lf %f %f %s", &time, &rain, &temp, id) != -1)
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1657:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp_in, "%s %d %d %s", desc, &date, &wgt, id) != -1)
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1659:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(datbuf_4[n].label, desc);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1718:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp_in, "%lf %lf %lf %f %f %s", &time, &lon, &lat, &rain, &temp, id) != -1)
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:2108:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(inInfo.fieldname[i], level.fieldname[i]);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:2167:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(inInfo2.fieldname[0], level.fieldname[0]);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:159:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp, "%lf %f %f %f %f %s", &time, &conc[0], &conc[1], &conc[2], &conc[3], spc) != -1)
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:133:9: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
while(fscanf(fp, "%lf %f %f %f %f %s", &time, &conc[0], &conc[1], &conc[2], &conc[3], spc) != -1)
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:205:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(inInfo.fieldname[i], level.fieldname[i]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:70:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(outstr, gridname);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:73:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(gridname, outstr);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:128:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->inputFile, argv[1]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:129:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->gridName, argv[2]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:134:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->outFileFlag, argv[4]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:150:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->inputFile, argv[1]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:151:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->gridName, argv[2]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:153:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->outputFile_nxny, argv[3]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:154:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->outputFile_lat, argv[3]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:155:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->outputFile_lon, argv[3]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:159:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->outFileFlag, argv[4]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:167:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->inputFile, argv[1]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:168:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->gridName, argv[2]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:170:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->outputFile_nxny, argv[3]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:171:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->outputFile_lat, argv[3]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:172:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->outputFile_lon, argv[3]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:184:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->inputFile, argv[1]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:185:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Com->gridName, argv[2]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:282:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "The file %s cannot be opened.\n",(&Com)->inputFile);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:300:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "No grid exists in the file %s.\n",(&Com)->inputFile);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:307:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmp_gridlist, gridlist);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:336:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "The file %s does not contain grid %s. The grids in this file are: %s\n",(&Com)->inputFile, (&Com)->gridName,gridlist);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:352:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "No projection information for grid %s.\n",gdid[is]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:420:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "No pixel rgistration code information for grid %s, assuming the default HE5_HDFE_CENTER.\n",gdid[is]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:433:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "No origin information for grid %s, assuming the default HE5_HDFE_GD_UL.\n",gdid[is]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:445:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "No grid information for grid %s.\n",gdid[is]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:609:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "Problem converting i,j to lat,lon in grid %s.\n",(&Com)->gridName);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:638:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "The flag for creating ASCII/Binary output file %s is -a or -b. \nAssuming -a : ASCII output file will be created.\n");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:656:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "The file %s cannot be opened.\n",(&Com)->outputFile_nxny);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:679:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "The file %s cannot be opened.\n",
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:703:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errbuf, "The file %s cannot be opened.\n",
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:98:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
srcdir = getenv("srcdir");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:143:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
srcdir = getenv("srcdir");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:181:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
srcdir = getenv("srcdir");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:230:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
srcdir = getenv("srcdir");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:265:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
srcdir = getenv("srcdir");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29859:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
ptr = (char *)getenv("STPDATADIR");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29864:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
ptr = (char *)getenv("MRTDATADIR");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29871:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
ptr = (char *)getenv("PWD");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29876:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
ptr = (char *)getenv("STPDATADIR");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:24:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
srcdir = getenv("srcdir");
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/EOSTests.c:243:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char formatString[64];
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/EOSTests.c:357:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fid=open("tst_file", O_CREAT | O_TRUNC | O_DIRECT, 0755))<0)
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/EOSTests.c:393:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *file = fopen( argv[0], "r" );
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/xlatefile.c:11:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char argbuf[8];
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/xlatefile.c:19:26: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(NULL == (infile = fopen(argv[1], "rb")))
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/xlatefile.c:21:27: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(NULL == (outfile = fopen(argv[2], "wb+")))
data/hdf-eos5-5.1.16.dfsg.1/config/cmake/xlatefile.c:27:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
stripXlines = atoi(argbuf);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/azimfor.c:82:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mess[80]; /* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/azimfor.c:96:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(mess,"Point projects into a circle of radius = %12.2lf",con);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/lamazfor.c:163:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mess[60];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/lamazfor.c:178:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(mess, "Point projects to a circle of radius = %lf\n", 2.0 * R);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:53:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char parm_file[256];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:54:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char err_file[256];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:81:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_e = (FILE *)fopen(err_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:191:29: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:203:27: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:218:27: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:231:25: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:243:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:255:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:267:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:278:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:293:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:308:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:323:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:336:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:347:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:358:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr_p = (FILE *)fopen(parm_file,"a");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/somfor.c:182:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errorbuf[80];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/somfor.c:232:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
L260: sprintf(errorbuf,"50 iterations without conv\n");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplnfor.c:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pname[32];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplnfor.c:66:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplnfor.c:73:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char swap[16];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplnfor.c:110:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"Illegal zone #%4ld for spheroid #%4ld",zone,sphere);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplnfor.c:116:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ptr = fopen(fn27,"r");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplnfor.c:118:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ptr = fopen(fn83,"r");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplnfor.c:152:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"Illegal zone #%4ld for spheroid #%4ld",zone,sphere);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplninv.c:63:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pname[33];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplninv.c:64:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplninv.c:71:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char swap[16];
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplninv.c:109:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"Illegal zone #%4ld for spheroid #%4ld",zone,sphere);
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplninv.c:115:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ptr = fopen(fn27,"r");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplninv.c:117:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ptr = fopen(fn83,"r");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/stplninv.c:152:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"Illegal zone #%4ld for spheroid #%4ld",zone,sphere);
data/hdf-eos5-5.1.16.dfsg.1/include/HE5_HdfEosDef.h:134:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *attrname[HE5_ATTRNUMBERMAX]; /* attribute name */
data/hdf-eos5-5.1.16.dfsg.1/include/HE5_HdfEosDef.h:155:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fieldname[HE5_FLDNUMBERMAX];/* Array of field names */
data/hdf-eos5-5.1.16.dfsg.1/include/HE5_HdfEosDef.h:690:41: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
herr_t HE5_SWindexinfo(hid_t regionID, char *object, int *rank, char *dimlist, hsize_t *indices[HE5_DTSETRANKMAX]);
data/hdf-eos5-5.1.16.dfsg.1/include/HE5_HdfEosDef.h:690:66: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
herr_t HE5_SWindexinfo(hid_t regionID, char *object, int *rank, char *dimlist, hsize_t *indices[HE5_DTSETRANKMAX]);
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:961:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
#define ESTRING static char AA0[MAX_LEN_FORTRAN_FUNCTION_STRING+1]; \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:968:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
#define ESTRING static char AA0[MAX_LEN_FORTRAN_FUNCTION_STRING+1]; \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:973:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
#define ESTRING static char A0[MAX_LEN_FORTRAN_FUNCTION_STRING+1]; \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1515:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
((B=malloc(D+1))[D]='\0', memcpy(B,A,D), kill_trailing(B,' '))
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1554:33: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define RRRRPSTR( A,B,D) if (B) memcpy(A,B,PGSMIN(strlen(B),D)), \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1641:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(AS->dsc$a_pointer,A0, PGSMIN(AS->dsc$w_length,(A0==NULL?0:strlen(A0))) ); \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1648:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_fcdtocp(AS),A0, PGSMIN(_fcdlen(AS),(A0==NULL?0:strlen(A0))) ); \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1653:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define KSTRING memcpy(AS,A0, PGSMIN(D0,(A0==NULL?0:strlen(A0))) ); \
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_eh_readglobalattr.c:50:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char gd_hdf_names[MAX_GD][256];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_eh_readglobalattr.c:53:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char att_hdf_names[MAX_ATT][256];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_info.c:40:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[80];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_info.c:41:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimname[1024], fieldlist[1024];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_info.c:42:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attrlist[80];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_rdexternaldata.c:40:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filelist[256];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_rdexternaldata.c:60:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_1 = fopen("external_1g.data", "w");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_rdexternaldata.c:61:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_2 = fopen("external_2g.data", "w");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_rdexternaldata.c:62:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_3 = fopen("external_3g.data", "w");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readdimscale.c:28:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readdimscale.c:132:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
attrname = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readhdfeosinformationmetadata.c:24:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char MetadataName[32]="";
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readhdfeosinformationmetadata.c:38:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(MetadataName, "iso_19139_dataset_xml");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrexternaldata.c:60:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_1 = fopen("external_1g.data", "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrexternaldata.c:61:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_2 = fopen("external_2g.data", "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrexternaldata.c:62:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_3 = fopen("external_3g.data", "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:30:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unit[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:31:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char format[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:108:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "X Dimension");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:109:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "meters");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:110:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F7.2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:164:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Time Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:166:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F2.3");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:248:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Y Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:249:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "meters");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:250:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F7.2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:262:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Bands");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:263:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "None");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:264:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F7.2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:303:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Y Dimension");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:304:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "Decimal Degrees");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:305:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F7.2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:30:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:31:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unit[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:32:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char format[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:119:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "X Dimension");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:120:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "meters");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:121:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F7.2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:191:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Time Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:193:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F2.3");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:275:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Y Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:276:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "meters");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:277:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F7.2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:289:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Bands");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:290:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "None");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:291:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F7.2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:330:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Y Dimension");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:331:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "Decimal Degrees");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:332:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "F7.2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrunlimfld.c:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[256], buf2[256];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:33:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spec[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:39:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:43:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:52:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:58:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[10];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:61:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:72:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:115:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Time");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:116:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"Concentration");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:117:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Species");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:176:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Label");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:177:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"Longitude");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:178:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Latitude");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:179:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[3],"DeployDate");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:180:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[4],"ID");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:227:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Time");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:228:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"Rainfall");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:229:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Temperature");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:230:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[3],"ID");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:288:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Label");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:289:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"DeployDate");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:290:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Weight");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:291:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[3],"ID");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:348:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Time");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:349:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"Longitude");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:350:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Latitude");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:351:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[3],"Rainfall");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:352:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[4],"Temperature");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_definelevels.c:353:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[5],"ID");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_readattrs.c:26:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attrlist[256] ;
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_readdata.c:38:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spec[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_updatelevels.c:25:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Spc[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_updatelevels.c:37:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(buf_1.Spc,"AM");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:13:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Spc[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:19:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Label[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:23:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Id[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:31:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Id[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:36:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Label[10];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:39:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Id[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:49:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Id[8];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:73:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spc[8], desc[16], id[ 2 ];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:75:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[NAMEBUF_SIZE];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:102:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(namebuf, "/simple.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:106:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(namebuf, "simple.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:109:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(namebuf, "rb");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:147:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(namebuf, "/fixedBuoy0.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:151:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(namebuf, "fixedBuoy0.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:154:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(namebuf, "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:185:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(namebuf, "/fixedBuoy1.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:189:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(namebuf, "fixedBuoy1.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:192:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(namebuf, "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:234:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(namebuf, "/floatBuoy0.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:238:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(namebuf, "floatBuoy0.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:241:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(namebuf, "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:269:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(namebuf, "/floatBuoy1.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:273:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(namebuf, "floatBuoy1.txt");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:276:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(namebuf, "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields.c:30:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fillvalue[100] = "charname";
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:36:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fillvalue[100] = "charname";
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:40:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mydummyMets[70001];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:45:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:46:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unit[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:47:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char format[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:57:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(mydummyMets,"ABCDEFGHIK0123456789ABCDEFGHIK0123456789ABCDEFGHIK0123456789ABCDEFGHIK");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:250:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "GeoTrack Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:251:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "None");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:252:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "I2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:283:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Bands Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:284:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "None");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:285:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "I2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_info.c:36:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[80] = {0};
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_info.c:38:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[80], attrlist[80], dimlist1[80];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_rdexternaldata.c:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filelist[256];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_rdexternaldata.c:54:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_1 = fopen("external_1.data", "w");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_rdexternaldata.c:55:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_2 = fopen("external_2.data", "w");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_rdexternaldata.c:56:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_3 = fopen("external_3.data", "w");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_readdata.c:31:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attr4[20] = {0}; /* ... for global 'char' attribute */
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_readdata.c:39:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attr8[20] = {0}; /* ... for local 'char' attribute */
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_readdata.c:47:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *charname[10] = {0};
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_readdimscale.c:28:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_readdimscale.c:130:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
attrname = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrextendrd.c:32:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[100];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrextendrd.c:33:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[100];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrexternaldata.c:57:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_1 = fopen("external_1.data", "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrexternaldata.c:58:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_2 = fopen("external_2.data", "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrexternaldata.c:59:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_3 = fopen("external_3.data", "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedata.c:30:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attr4[20]; /* Global 'char' attribute */
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedata.c:31:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attr8[20]; /* Global 'char' attribute */
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedata.c:32:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attr9[20]; /* Global 'char' attribute */
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedata.c:53:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *charname[10] = {
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedata.c:175:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(attr8,"AAAAAA");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedata.c:182:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(attr4,"ABCDEFGH");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedata.c:187:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(attr9,"abc");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedata.c:214:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(attr4,"ababababababababab");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c:27:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c:28:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unit[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char format[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c:83:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "GeoTrack Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c:84:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "None");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c:85:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "I2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c:141:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Bands Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c:142:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "None");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_writedimscale.c:143:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "I2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrunlimfld.c:42:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[80];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_wrunlimfld.c:43:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[80];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_definefields.c:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fillvalue[100] = "charname";
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_info.c:33:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[80] = {0};
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_info.c:35:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attrlist[80];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_rdexternaldata.c:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filelist[256];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_rdexternaldata.c:54:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_1 = fopen("external_1.data", "w");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_rdexternaldata.c:55:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_2 = fopen("external_2.data", "w");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_rdexternaldata.c:56:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_3 = fopen("external_3.data", "w");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_readdata.c:31:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attr4[7] = {0}; /* ... for global 'char' attribute */
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_readdata.c:41:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *charname[10] = {0};
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_readdimscale.c:28:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_readdimscale.c:130:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
attrname = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_wrexternaldata.c:58:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_1 = fopen("external_1.data", "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_wrexternaldata.c:59:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_2 = fopen("external_2.data", "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_wrexternaldata.c:60:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_3 = fopen("external_3.data", "r");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writeAlldimscale.c:23:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writeAlldimscale.c:24:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unit[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writeAlldimscale.c:25:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char format[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writeAlldimscale.c:73:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Bands Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writeAlldimscale.c:74:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "None");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writeAlldimscale.c:75:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "I2");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedata.c:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attr4[7]; /* Global 'char' attribute */
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedata.c:41:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *charname[10] = {
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedata.c:97:19: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(attr4,"ABCDEF");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedimscale.c:23:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedimscale.c:24:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unit[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedimscale.c:25:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char format[16];
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedimscale.c:73:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(label, "Bands Dim");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedimscale.c:74:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unit, "None");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_writedimscale.c:75:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(format, "I2");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:173:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:208:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:272:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"The datatype \"%d\" is not supported (unknown).\n", (int)dtype);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:286:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"The datatype \"%d\" is not supported (unknown).\n", (int)dtype);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1652:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdfeosVersion[HE5_VERSIONLEN];/* HDFEOS version string */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1654:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version_buf1[13];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1725:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid file access flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1810:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"ADDITIONAL\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1831:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"FILE_ATTRIBUTES\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1859:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"HDFEOS\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1871:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"ADDITIONAL\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1883:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"FILE_ATTRIBUTES\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1895:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"HDFEOS INFORMATION\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1917:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create dataspace for \"HDFEOSVersion\" attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1928:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the total size for atomic datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1941:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"HDFEOSVersion\" attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1953:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write in data to the \"HDFEOSVerion\" attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1968:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the metadata buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1976:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(metabuf, "GROUP=SwathStructure\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1977:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(metabuf, "END_GROUP=SwathStructure\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1978:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(metabuf, "GROUP=GridStructure\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1979:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(metabuf, "END_GROUP=GridStructure\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1980:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(metabuf, "GROUP=PointStructure\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1981:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(metabuf, "END_GROUP=PointStructure\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1982:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(metabuf, "GROUP=ZaStructure\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1983:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(metabuf, "END_GROUP=ZaStructure\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1984:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(metabuf, "END\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:1999:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create dataspace for \"StructMetadata.0\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2016:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the total size for atomic datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2031:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"StructMetadata.0\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2053:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write in data to the \"StructMetadata.0\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2068:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataspace ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2077:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the attribute ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2086:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataspace ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2095:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2108:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"HDFEOS INFORMATION\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2120:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"ADDITIONAL\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2134:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"FILE_ATTRIBUTES\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2158:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for file name. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2191:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get version. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2237:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"HDFEOS INFORMATION\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2255:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"StructMetadata.0\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2268:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2282:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The datatype is of ZERO size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2299:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2309:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2319:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2351:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Illegal attempt to open more than %d files simultaneously. \n", HE5_NEOSHDF);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2416:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid file ID: %ld. ID should range from %d to %d .\n", (long int) fid, HE5_EHIDOFFSET, HE5_NEOSHDF + HE5_EHIDOFFSET);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2612:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open \"HDFEOS INFORMATION\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2627:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the \"HDFEOSVersion\" attribute ID.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2638:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the \"HDFEOSVersion\" attribute data type ID.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2655:19: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot copy the \"HDFEOSVersion\" attribute datatype.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2666:19: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot set the total size for the \"HDFEOSVersion\" attribute.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2678:19: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read out the \"HDFEOSVersion\" attribute.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2693:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read out the \"HDFEOSVersion\" attribute.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2706:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"HDFEOSVersion\" attribute datatype ID.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2718:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"HDFEOSVersion\" attribute ID.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2728:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"HDFEOS INFORMATION\" group ID.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3085:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for buffer.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3099:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Input test string has no entries.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3114:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for a string pointer.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3126:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for a string length pointer.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3141:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Input test string has no entries.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3242:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for buffer.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3256:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Input test string has no entries.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3271:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for a string pointer.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3283:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for a string length pointer.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3298:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Input test string has no entries.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3399:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dstr[2]; /* string containing "delim" value */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3985:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX];/* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3986:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaArr[2]={NULL,NULL};/* Array of metadata positions */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4029:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for data type string. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4044:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"HDFEOS INFORMATION\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4063:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"StructMetadata.0\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4075:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4087:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset dataspace. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4112:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)calloc( HE5_HeosTable[fid%HE5_EHIDOFFSET].HE5_STATIC_BLKSIZE, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4115:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for meta buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4128:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4143:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the 2nd utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4159:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read structural metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4178:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4182:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4186:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4190:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4203:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the 2d utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4219:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr1, "END_GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4223:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr1, "END_GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4227:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr1, "END_GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4231:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr1, "END_GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4310:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4313:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4316:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_SHORT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4319:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_USHORT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4322:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_SCHAR");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4325:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UCHAR");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4328:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_LONG");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4331:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_ULONG");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4334:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_LLONG");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4337:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_ULLONG");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4340:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_FLOAT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4343:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_DOUBLE");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4346:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_LDOUBLE");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4349:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT8");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4352:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT8");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4355:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT16");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4358:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT16");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4361:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT32");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4364:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT32");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4367:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT64");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4370:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT64");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4373:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_B8");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4376:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_B16");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4379:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_B32");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4382:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_B64");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4385:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_HSIZE");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4388:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_HERR");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4391:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_HBOOL");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4394:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_CHAR");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4397:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "HE5T_CHARSTRING");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4414:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4446:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4477:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=DimensionMap");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4480:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=DimensionMap");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4501:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Input metadata string has no entries. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4532:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=IndexDimensionMap");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4535:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=IndexDimensionMap");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4551:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"The input metadata string has no entries. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4583:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=GeoField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4586:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=GeoField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4614:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert the string list to metadata list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4658:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=DataField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4661:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=DataField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4691:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert the string list to metadata list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4734:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=ProfileField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4737:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=ProfileField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4766:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert the string list to metadata list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4810:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=Level");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4813:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\n\t\tEND_GROUP=Level");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4845:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\t\t\tLevelName=\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4849:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\t\tEND_GROUP=Level_");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4878:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=LevelLink");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4881:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=LevelLink");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4918:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4927:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "END_GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4937:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "END_GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4946:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "END_GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4954:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "END_GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4962:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Unknown metacode.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4976:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
newbuf = (char *) calloc(HE5_HeosTable[fid%HE5_EHIDOFFSET].HE5_STATIC_BLKSIZE, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4979:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for a new metadata string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5020:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write in structural metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5048:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5059:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5069:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5079:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5171:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX];/* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5172:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaArr[2]={NULL,NULL};/* Array of metadata positions */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5192:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char metutlstr[32];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5223:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for data type string. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5237:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"HDFEOS INFORMATION\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5253:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot find any StructMetadata.X dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5266:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the metadata buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5303:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5316:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset dataspace. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5348:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5363:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the 2d utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5380:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read structural metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5402:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5406:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5410:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5414:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5427:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the 2d utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5443:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr1, "END_GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5447:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr1, "END_GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5451:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr1, "END_GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5455:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr1, "END_GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5534:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5537:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5540:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_SHORT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5543:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_USHORT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5546:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_SCHAR");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5549:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UCHAR");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5552:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_LONG");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5555:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_ULONG");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5558:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_LLONG");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5561:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_ULLONG");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5564:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_FLOAT");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5567:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_DOUBLE");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5570:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_LDOUBLE");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5573:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT8");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5576:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT8");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5579:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT16");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5582:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT16");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5585:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT32");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5588:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT32");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5591:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_INT64");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5594:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_UINT64");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5597:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_B8");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5600:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_B16");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5603:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_B32");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5606:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_B64");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5609:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_HSIZE");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5612:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_HERR");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5615:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_HBOOL");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5618:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "H5T_NATIVE_CHAR");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5621:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type, "HE5T_CHARSTRING");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5638:10: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5670:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5701:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=DimensionMap");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5704:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=DimensionMap");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5725:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Input metadata string has no entries. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5756:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=IndexDimensionMap");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5759:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=IndexDimensionMap");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5775:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"The input metadata string has no entries. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5807:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=GeoField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5810:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=GeoField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5838:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert the string list to metadata list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5882:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=DataField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5885:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=DataField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5915:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert the string list to metadata list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5958:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=ProfileField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5961:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=ProfileField");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5990:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert the string list to metadata list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6034:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=Level");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6037:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\n\t\tEND_GROUP=Level");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6069:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\t\t\tLevelName=\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6073:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\t\tEND_GROUP=Level_");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6102:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=LevelLink");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6105:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=LevelLink");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6142:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6151:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "END_GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6161:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "END_GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6170:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "END_GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6178:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "END_GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6186:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Unknown metacode.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6212:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for a new metadata string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6256:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the total size for atomic datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6294:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for a new metadata string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6349:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write in structural metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6380:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6391:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6401:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6412:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6671:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for file ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6687:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"HDFEOS INFORMATION\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6703:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"StructMetadata.0\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6716:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6729:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The datatype is of ZERO size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6742:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6761:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)calloc( HE5_HeosTable[fid%HE5_EHIDOFFSET].HE5_STATIC_BLKSIZE, sizeof(tsize) );
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6764:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Can not allocate memory for meta bufer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6775:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Can not allocate memory for utility string. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6790:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read the metadata buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6807:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6809:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6811:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6813:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6877:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataspace ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6892:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6907:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6922:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"HDFEOS INFORMATION\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6999:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char metutlstr[32];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7021:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for file ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7037:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"HDFEOS INFORMATION\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7057:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot find any StructMetadata.X dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7083:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7096:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The datatype is of ZERO size for StructMetadata block (zero based) %d. \n", ism);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7109:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data space ID for StructMetadata block (zero based) %d. \n", ism);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7122:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Data sizes are not the same for StructMetadata blocks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7144:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Can not allocate memory for meta bufer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7155:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Can not allocate memory for utility string. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7175:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read the metadata buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7191:56: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
Stored_meta[fid%HE5_EHIDOFFSET].saved_metabuf = (char *)realloc(Stored_meta[fid%HE5_EHIDOFFSET].saved_metabuf,(Stored_meta[fid%HE5_EHIDOFFSET].metabuf_length+1)*sizeof(tsize));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7209:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7211:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7213:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7215:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7281:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataspace ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7296:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7311:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7326:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"HDFEOS INFORMATION\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7618:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extend data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7647:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write in data to the attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7660:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7673:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the attribute ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7714:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write in data to the attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7727:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the attribute ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7794:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7807:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the attribute ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7859:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8071:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8084:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8097:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the attribute ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8150:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8504:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get attribute information. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8529:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8540:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8642:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get datasets information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8660:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8743:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release \"HDFEOS\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8781:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the file ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8809:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid file ID: %ld . ID should range from %d to %d . \n", (long int) fid, HE5_EHIDOFFSET, HE5_NEOSHDF + HE5_EHIDOFFSET);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8852:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9022:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9128:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"The datatype \"%d\" is not supported (unknown).\n", (int)dtype);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9205:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9230:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"ADDITIONAL\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9242:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"FILE_ATTRIBUTES\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9260:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"ADDITIONAL\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9269:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"FILE_ATTRIBUTES\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9345:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9360:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"ADDITIONAL\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9371:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"FILE_ATTRIBUTES\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9389:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"ADDITIONAL\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9398:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"FILE_ATTRIBUTES\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9451:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9535:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9550:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"ADDITIONAL\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9561:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"FILE_ATTRIBUTES\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9579:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"ADDITIONAL\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9588:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"FILE_ATTRIBUTES\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9668:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9686:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/ADDITIONAL/FILE_ATTRIBUTES");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9693:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9774:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9789:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"ADDITIONAL\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9800:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"FILE_ATTRIBUTES\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9879:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"ADDITIONAL\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:9888:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"FILE_ATTRIBUTES\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10062:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for data type string. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10077:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"HDFEOS INFORMATION\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10096:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"StructMetadata.0\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10108:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10120:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset dataspace. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10136:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)calloc( HE5_HeosTable[fid%HE5_EHIDOFFSET].HE5_STATIC_BLKSIZE, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10139:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for meta buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10152:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10167:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the 2d utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10183:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read structural metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10202:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10206:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10210:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10214:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10281:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10284:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10299:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Unknown metacode.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10310:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
newbuf = (char *) calloc(HE5_HeosTable[fid%HE5_EHIDOFFSET].HE5_STATIC_BLKSIZE, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10313:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for a new metadata string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10358:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write in structural metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10386:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10397:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10407:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10417:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10504:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char metutlstr[32];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10548:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for data type string. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10562:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open \"HDFEOS INFORMATION\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10578:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot find any StructMetadata.X dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10611:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10623:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset dataspace. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10642:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for meta buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10655:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10673:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read structural metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10696:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=SwathStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10700:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=GridStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10704:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=PointStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10708:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "GROUP=ZaStructure");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10775:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tGROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10778:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tEND_GROUP=Dimension");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10803:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for a new metadata string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10848:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the 2d utility string buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10860:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(utlstr2,"%li",(long)metadata[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10889:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"The length of the size of updated dimension is too long. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10910:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Unknown metacode.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10976:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write in structural metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11003:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11014:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11024:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11035:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11121:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling \"HE5_EHidinfo\" from FORTAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11244:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11262:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11273:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11292:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of global attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11302:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11305:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11313:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11319:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the global attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11336:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the global attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11388:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11448:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11463:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11473:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11487:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about global attribute from \"FILE_ATTRIBUTES\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11549:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11556:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11627:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for typeID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11637:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tsize.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11648:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for classID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11660:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for order.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11677:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11785:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(access_code, "r+");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11807:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fptr = fopen( extfilename, access_code );
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11895:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char metutlstr[32];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12061:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(filename,"r")) == NULL)
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12217:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"HE5_EHwritemeta: File ID %d not active \n",fid);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12253:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"HDFEOS INFORMATION\" group.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12309:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the total size for atomic datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12364:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataspace ID.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12375:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12394:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"HDFEOS INFORMATION\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12489:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"HE5_EHreadmeta: File ID %d not active \n",fid);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12518:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open \"HDFEOS INFORMATION\" group.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12538:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot find any metadata dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12551:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the metadata buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12596:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12608:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset dataspace. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12628:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12662:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataspace ID.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12674:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12686:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12705:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"HDFEOS INFORMATION\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12771:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[512];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12773:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdfeosgroup[128];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12774:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char memb_name[MAX_NAME];
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12799:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"HE5_EHreadmeta: File ID %d not active \n",fid);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12817:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open \"HDFEOS INFORMATION\" group.");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12830:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdfeosgroup, "/HDFEOS INFORMATION");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12893:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(memb_name, "StructMetadata");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char HE5_GDXSDname[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char HE5_GDXSDdims[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:47:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char gdname[HE5_OBJNAMELENMAX]; /* grid name */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:48:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char compmethod[HE5_HDFE_NAMBUFSIZE];/* compression method */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:71:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *DimNamePtr[HE5_DTSETRANKMAX];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:340:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:350:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:362:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:375:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:389:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:413:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot call HE5_GDcreate on a file opened read-only.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:420:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for file ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:470:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"GRIDS\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:502:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot retrieve the number of grids.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:564:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"Data Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:602:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(refstr1, "DEFAULT");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:603:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(refstr2, "DEFAULT");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:618:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot insert metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:639:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot close \"GRIDS\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:669:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ i ].compmethod,"HE5_HDFE_COMP_NONE");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:681:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No more than %d grids may be opened simutaneously.\n", HE5_NGRID);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:806:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:825:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory to the grpname.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:833:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( grpname, "/HDFEOS/GRIDS/");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:891:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ i ].compmethod,"HE5_HDFE_COMP_NONE");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:907:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat( grpname, "/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:911:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get information about \"Data Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:938:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory to the ddataset structure.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:950:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory to the name list buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:974:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory to fldname.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1004:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory to the dataset name.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1048:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No more than %d grids may be open simultaneously", HE5_NGRID);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1108:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1142:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the Grid index \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1153:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for file ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1236:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1250:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot insert metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1316:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char projparmbuf[HE5_HDFE_UTLBUFSIZE];/* Projection parameter */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1317:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *GCTPproj[128] = {"HE5_GCTP_GEO","HE5_GCTP_UTM","HE5_GCTP_SPCS",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1348:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1362:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1370:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(GCTPproj[97], "HE5_GCTP_CEA");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1375:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1384:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(GCTPproj[98], "HE5_GCTP_BCEA");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1391:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1401:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(GCTPproj[99], "HE5_GCTP_ISINUS");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1428:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlbuf, "0,");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1489:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot insert metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1570:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility Buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1571:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message Buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1597:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get projection information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1616:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write in offset values.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1630:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read out the offset values.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1728:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1855:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_DEFLATE");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1875:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1885:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_CHIP");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1905:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1915:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_K13");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1935:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1945:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_EC");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1965:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1975:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_NN");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1995:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2005:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_K13orHE5_HDFE_COMP_SZIP_EC");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2025:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2035:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_K13orHE5_HDFE_COMP_SZIP_NN");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2063:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_DEFLATE");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2091:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2101:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_CHIP");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2129:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2139:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_K13");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2167:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2177:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_EC");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2205:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2215:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_NN");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2243:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2253:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_K13orEC");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2281:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2291:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_K13orNN");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2298:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_NONE");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2376:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message Buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2436:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Unknown tile code.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2453:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2466:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the type of storage of the raw data to \"CHUNKED\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2495:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the sizes of the chunks.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2568:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message Buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2635:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2660:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2671:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the \"CHUNKED\" type of storage.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2685:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the layout of the raw data.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2712:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the sizes of chunks.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2741:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the sizes of chunks.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2749:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid dataset rank: %d .", tilerank);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2776:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2786:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_DEFLATE");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2799:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2807:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2817:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_CHIP");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2830:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 cmpression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2838:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2848:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_K13");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2861:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2869:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2879:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_EC");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2892:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2900:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2910:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_NN");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2923:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orEC compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2931:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2941:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_K13orEC");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2954:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2962:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2972:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SZIP_K13orNN");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2982:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:2991:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3001:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_DEFLATE");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3011:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3023:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3031:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3041:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_CHIP");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3051:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3063:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 cmpression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3071:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3081:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_K13");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3091:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3103:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3111:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3121:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_EC");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3131:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3143:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3151:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3161:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_NN");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3171:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3183:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orEC compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3191:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3201:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_K13orEC");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3211:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3223:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compression method and block size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3231:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3241:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_SHUF_SZIP_K13orNN");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3248:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[ idx ].compmethod, "HE5_HDFE_COMP_NONE");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3256:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Compression method is not specified.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3347:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3358:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3375:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot insert metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3384:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Improper Grid Origin code: %d\n", origincode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3475:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3487:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3507:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3516:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Improper Pixel Registration code: %d\n", pixregcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3579:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL};/* Pointers to begin and end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3605:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3618:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3629:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname, "g", "Dimension", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3632:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3656:9: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size = atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3660:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"Size\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3736:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL};/* Pointers to begin and end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3738:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3750:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3762:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3771:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname, "g", NULL, metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3774:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3789:16: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*xdimsize = atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3794:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"XDim\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3807:16: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*ydimsize = atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3812:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"YDim\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3841:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf, "\"UpperLeftPointMtrs\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3869:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"\"LowerRightMtrs\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3938:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL};/* Pointers to begin and end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3940:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[96]; /* Format String */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3941:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *GCTPproj[128] = {"HE5_GCTP_GEO", "HE5_GCTP_UTM", "HE5_GCTP_SPCS",
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3951:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3962:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3974:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3985:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3992:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(GCTPproj[97], "HE5_GCTP_CEA");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:3997:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4005:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(GCTPproj[98], "HE5_GCTP_BCEA");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4011:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for GCTP codes string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4019:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(GCTPproj[99],"HE5_GCTP_ISINUS");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4023:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname, "g", NULL, metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4026:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4097:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*zonecode = atoi(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4140:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(fmt, "%lf,");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4142:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(fmt, "%lf,");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4143:8: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(fmt, "%lf");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4187:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*spherecode = atoi(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4261:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL}; /* Pointers to begin and end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4288:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4302:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4316:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname, "g",NULL, metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4319:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4435:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL}; /* Ptrs to begin/end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4461:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4477:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4488:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid , HE5_GDXGrid[idx].gdname, "g", NULL, metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4491:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4613:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldname[HE5_HDFE_NAMBUFSIZE]; /* Field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4614:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual name of a field */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4616:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL};/* Ptrs to begin/end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4629:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *HDFcomp[18] = {"HE5_HDFE_COMP_NONE", "HE5_HDFE_COMP_RLE", "HE5_HDFE_COMP_NBIT", "HE5_HDFE_COMP_SKPHUFF", "HE5_HDFE_COMP_DEFLATE", "HE5_HDFE_COMP_SZIP_CHIP", "HE5_HDFE_COMP_SZIP_K13", "HE5_HDFE_COMP_SZIP_EC", "HE5_HDFE_COMP_SZIP_NN", "HE5_HDFE_COMP_SZIP_K13orEC", "HE5_HDFE_COMP_SZIP_K13orNN", "HE5_HDFE_COMP_SHUF_DEFLATE", "HE5_HDFE_COMP_SHUF_SZIP_CHIP", "HE5_HDFE_COMP_SHUF_SZIP_K13", "HE5_HDFE_COMP_SHUF_SZIP_EC", "HE5_HDFE_COMP_SHUF_SZIP_NN", "HE5_HDFE_COMP_SHUF_SZIP_K13orEC", "HE5_HDFE_COMP_SHUF_SZIP_K13orNN"}; /* Compression method Codes */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4655:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4667:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4680:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4705:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname, "g","DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4708:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4793:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the Grid index \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4940:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"CompressionParams\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4956:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"DeflateLevel\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4972:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4988:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5004:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5020:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5036:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5052:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5068:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"DeflateLevel\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5084:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5100:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5116:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5132:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5148:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5164:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5294:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL}; /* Pnts to begin and end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5296:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX]; /* String pointers for parsed string */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5297:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimstr[HE5_HDFE_DIMBUFSIZE]; /* Individual dimension entry string */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5298:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimstr[HE5_HDFE_DIMBUFSIZE];/* Maximum dimension entry string */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5299:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5301:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldname[HE5_HDFE_NAMBUFSIZE]; /* field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5302:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual field name */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5314:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5330:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for Grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5343:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5369:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname, "g", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5372:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "cannot allocate memory for metabuffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5519:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"DataType\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5549:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"DimList\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5563:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get information about Grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5593:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the size of dimension.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5638:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"MaxdimList\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5802:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5814:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5858:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the rank of the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5869:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the layout of the raw data. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5883:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the sizes of chunks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5900:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5911:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6037:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char compmethod[HE5_HDFE_NAMBUFSIZE];/* Compression code */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6044:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char gridname[HE5_HDFE_NAMBUFSIZE]; /* Grid name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6045:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parmbuf[HE5_HDFE_NAMBUFSIZE]; /* Parameter string buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6052:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char compparmbuf[HE5_HDFE_NAMBUFSIZE]; /* Compression string buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6053:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlstbuf[HE5_HDFE_NAMBUFSIZE];/* Max.Dimension list buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6056:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempname[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6102:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for defining field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6121:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for error buffer1.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6132:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for error buffer2.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6146:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tiling error message.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6158:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf1, "HE5_GDXSDname array too small.\nPlease increase ");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6159:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf1, "size of HE5_HDFE_NAMBUFSIZE in \"HE5_HdfEosDef.h\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6160:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf2, "HE5_GDXSDdims array too small.\nPlease increase ");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6161:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf2, "size of HE5_HDFE_DIMBUFSIZE in \"HE5_HdfEosDef.h\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6191:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for Grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6207:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Can not allocate memory for utility buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6220:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Can not allocate memory for utility buffer2.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6239:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Can not allocate memory for dimension buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6255:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Can not allocate memory for dimension list string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6272:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about Grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6292:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get Grid projection information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6320:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot define \"SOMBlockDim\" dimension.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6349:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dimbuf, "SOMBlockDim,");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6391:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6519:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6640:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Maximum dimension size is smaller than dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6768:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create a new property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6789:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get layout information for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6810:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create dataspace for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6832:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create dataspace for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6850:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Dataset MUST BE CHUNKED if it is extendible.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7028:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot extend the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7053:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reallocate memory for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7075:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7096:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the dataset name string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7130:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the \"value\" variable.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7168:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write fill value to the \"_FillValue\" attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7212:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot make metadata string list for the max dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7238:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot make metadata string list for the max dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7400:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(parmbuf, ",%li", (long)HE5_GDXGrid[idx].tiledims[ i ]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7416:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7443:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert \"hid_t\" to \"hsize_t\" data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7466:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot insert metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7490:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the property list ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7499:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(HE5_GDXGrid[idx].compmethod,"HE5_HDFE_COMP_NONE");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7568:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7583:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7595:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7608:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get information about Grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7702:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7715:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7726:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7743:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7754:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7764:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7775:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7776:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7790:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7899:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7912:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7923:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7940:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7951:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7961:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7972:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7973:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7987:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8091:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8092:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8161:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for dimscale.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8178:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8193:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8240:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get Grid projection information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8260:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Failed to get default values for uplft and lowrght points.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8361:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create a new property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8373:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get layout information for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8387:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create dataspace for the dimension scale dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8414:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8425:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8532:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8533:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8616:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for dimscale.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8630:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffchar.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8642:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffschar.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8654:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffuchar.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8666:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffshort.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8678:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffushort.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8690:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffint.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8702:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffuint.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8714:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_bufflong.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8726:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffulong.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8738:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffllong.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8750:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffullong.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8763:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_bufff32.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8776:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_bufff64.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8788:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_bufflong64.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8800:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for buffer data_buffchar.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8836:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8909:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get Grid projection information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:8942:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Failed to get default values for uplft and lowrght points.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9268:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create a new property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9293:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get layout information for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9320:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create dataspace for the dimension scale dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9373:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9385:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9577:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9578:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9608:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for Grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9700:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9712:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve data type size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9813:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9849:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9869:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9881:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9893:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read out the data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9903:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9913:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the memory data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9923:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:9984:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10085:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10188:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10246:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10359:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_DIMBUFSIZE]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10360:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10370:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10384:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert metadata value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10399:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert metadata value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10517:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10518:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10519:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10525:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempname[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10528:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldname[HE5_HDFE_NAMBUFSIZE]; /* Field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10529:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual field name */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10544:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *dimname[HE5_DTSETRANKMAX];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10556:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10568:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10596:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10626:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimension buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10638:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimension list string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10652:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about Grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10666:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get Grid projection information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10695:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dimbuf, "SOMBlockDim,");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10737:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10820:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10860:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot update the dimension, new dimension size is larger than the max dimension size in the datafiled.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10871:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot update the dimension.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10910:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Maximum dimension size is smaller than dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11057:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11089:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot select the hyperslab.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11117:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the dataspace for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11141:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11165:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11192:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11215:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for attrlist1.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11238:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11269:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11300:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11328:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for attrlist2.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11356:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11454:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11490:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11518:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11564:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read out data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11591:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11613:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read out data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11651:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataspace ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11663:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataspace ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11675:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12192:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for fillvalue.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12218:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12233:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the dataset property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12250:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the fill value for a dataset creation property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12355:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12369:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for data type class ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12414:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the dataset data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12428:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve fillvalue attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12440:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for attrnames.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12452:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve fillvalue attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12473:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the fill value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12492:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12509:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve fillvalue attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12636:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Group \"%d\" unknown.\n", fieldgroup);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12955:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL};/* Ptrs to begin/end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12957:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char valName[2][32]; /* Strings to search for */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12981:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:12994:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13014:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname, "g", "Dimension", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13017:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13026:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "DimensionName");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13032:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname, "g", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13035:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13044:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "DataFieldName");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13050:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Unknown entry code.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13067:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "\t\tOBJECT");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13091:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get metadata string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13192:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL}; /* Ptrs to begin/end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13218:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13229:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13243:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname, "g","Dimension", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13246:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13264:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\tOBJECT=");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13277:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"OBJECT\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13294:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"DimensionName\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13324:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"Size\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13333:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size = (hsize_t)atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13549:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13559:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
grpname = (char *) calloc( (strlen(HE5_GDXGrid[idx].gdname)+40), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13562:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the group name string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13570:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/GRIDS/");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13652:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13654:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]; /* Pointers to begin and end of SM section */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13656:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX]; /* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13682:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13693:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13708:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_GDXGrid[idx].gdname,"g","DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13711:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabuffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13747:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"OBJECT\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13765:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\t\t\t");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13766:9: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlstr, "DataFieldName");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13772:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"DataFieldName\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13806:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13809:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13822:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open the dataset.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13836:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13850:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type class.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13876:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to see if string field is varaible or fixed length.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13892:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13907:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot close the datatype.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13921:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot close the dataset.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13946:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"DimList\" string not found in metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14054:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14074:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot close the dataset.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14097:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot close the group.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14114:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot close the group.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14297:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14333:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14346:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14408:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14422:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14443:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14457:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14472:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14486:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14509:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14526:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14587:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14601:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14622:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14636:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14652:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14666:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14683:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14697:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14757:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14771:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14786:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14801:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li \n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:14944:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15004:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15020:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15079:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15286:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Unknown pixel corner.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15323:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15354:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15387:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15413:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15429:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15452:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15651:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error: HE5_GDrs2ll can be called only for HE5_GCTP_BCEA projection.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15708:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Unknown pixel corner.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15729:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15753:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:15806:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:16761:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:16775:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to get grid information.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:16788:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Zero values of \"xdimsize\" and \"ydimsize\".\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:16809:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"No projection code is defined.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:16826:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Failed to get default values for uplft and lowrght points.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:16856:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Failed to find additional tangent points.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:16879:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert from lon/lat to row/col.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:16933:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Subset Region outside of Grid Region.");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:16956:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17048:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error converting .");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17081:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Subsetting failed ");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17237:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17266:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17279:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17294:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inactive Region ID: %ld.\n", regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17310:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Region is not defined for this file.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17325:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Region is not defined for this Grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17438:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data size of the data field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17502:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17528:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17629:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17653:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17665:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve data size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17678:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17754:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE]; /* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17783:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17797:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid Region id: %ld.\n", regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17811:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inactive Region ID: %ld.\n", regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17826:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Region is not defined for this file.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:17841:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Region is not defined for this Grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18240:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE]; /* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18278:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18306:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18324:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for data type class ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18361:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
vertArr = (char *)calloc(dims[0], size);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18365:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18389:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read out data from the data field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18404:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data field ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18417:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type of the data field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18448:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18495:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Data field not found.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18580:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Data field not found.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18627:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Data field not found.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18641:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Unknown Data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18800:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18814:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about Grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18833:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get projection information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18846:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get explicit upleftpt and lowrghtpt values.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18859:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get pixel registration information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18870:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get pixel origin information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18885:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18897:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18912:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get pixRow, pixCol, xVal, and yVal.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19117:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimension list string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19135:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19150:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19207:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get origin order information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19228:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the field data size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19247:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data field ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19266:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19281:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for pixel coordinates array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19310:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19325:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19342:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot select the pixels to read.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19358:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19374:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read out the data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19389:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19403:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the memory data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19417:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19573:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19585:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimension list string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19599:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for data type class ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19672:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the size of data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19695:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about Grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19715:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get projection information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19730:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get upleftpt and lowrightpt defaults.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19746:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get pixel registration information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19759:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get pixel origin information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19779:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get row and column of point pixel.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19856:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19872:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Interpolation boundary out of grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19913:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset datatype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:19945:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20055:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Unknown data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20134:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20248:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20353:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20452:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20546:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20559:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20568:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Can not allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20574:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsname,"/HDFEOS/GRIDS/");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20635:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20660:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20670:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Can not allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20677:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsname,"/HDFEOS/GRIDS/");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20679:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(dtsname,"/Data Fields/");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20737:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20770:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20792:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20850:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20869:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20891:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20952:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20970:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20992:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21051:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21069:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21091:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21169:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for grid ID failed.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21182:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21192:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/GRIDS/");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21194:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21286:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21336:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for filename. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21354:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot set external dataset property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21462:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21507:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of external files.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21539:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about external file.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21571:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release property list ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21640:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21649:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21698:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for namebuf.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21781:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21794:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21817:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"buf\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21839:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"aliasname\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21918:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21929:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21940:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid input group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22011:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22020:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22033:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid input group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22046:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"statbuf\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22150:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22166:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/GRIDS/");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22168:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22175:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the fields & aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22185:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22278:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Improper npnts value\"%li\" must be greater than zero. \n", (long)npnts);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22310:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22328:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22344:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Wrong projection code; this function is only for EASE grid \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22440:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Improper npnts value\"%li\" must be greater than zero. \n", (long)npnts);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22463:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "GCTP Error: %li\n", (long)errorcode);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22476:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Wrong projection code; this function is only for EASE grid \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22533:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22561:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22573:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22585:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22599:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields & aliases in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22612:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22626:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields & aliases in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22638:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the aliases.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22655:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"buff\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22669:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"tmpbuf\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22693:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"nameptr\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22741:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the aliases.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22761:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the aliases.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22775:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid input field group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22784:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for grid ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22871:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "File access flag is not supported. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22884:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDopen() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22951:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDcreate() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23018:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDattach() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23088:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDdetach() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23156:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDclose() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23222:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDdefdim from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23293:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDdefproj() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23367:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDdeforigin() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23447:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_EHconvdatatype() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23462:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23475:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_EHrevflds() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23492:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for maxdimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23505:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_EHrevflds() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23528:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDdeffld() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23604:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_EHconvdatatype() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23616:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDsetfillvalue() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23689:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tdims.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23707:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDdeftile() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23799:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDdefcomp() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23867:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDdefpixreg() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23971:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23980:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23990:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24013:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tmpString.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24107:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling GDfieldinfo() from FORTRAN wrapper.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24229:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24238:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24248:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24269:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24365:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling GDfieldinfo() from FORTRAN wrapper.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24467:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24477:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24488:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24509:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDwrrdfield() from FORTRAN wrapper.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24522:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDfieldinfo() from FORTRAN wrapper.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24634:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24644:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24655:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24688:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Element length passed in is not correct. Should be same as in declration");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24713:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDwrrdfield() from FORTRAN wrapper.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24737:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Number of elements passed in cannot be zero.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24771:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Number of elements passed in cannot be zero.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24803:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strcpy((char *)buffer,strdatabuf[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24810:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strcat((char *)buffer,strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24822:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDfieldinfo() from FORTRAN wrapper.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24906:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDgetfillvalue() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24981:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_EHconvdatatype() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24992:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25012:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25022:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25025:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25033:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25137:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_EHconvdatatype() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25148:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25168:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of group attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25178:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25181:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25189:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25195:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25213:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25291:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_EHconvdatatype() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25302:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25323:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of local attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25333:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25336:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25344:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25350:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write local attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25368:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write local attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25440:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDreadattr() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25507:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDreadgrpattr() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25574:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDreadlocattr() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25645:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDnentries() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25656:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tdims.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25667:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDinqdims() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25746:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDdiminfo() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25832:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25845:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for maxdimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25865:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDfieldinfo() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25900:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_EHrevflds() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25910:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_EHrevflds() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25993:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling GDtileinfo() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26086:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for typeID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26096:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for classID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26108:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for Order.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26121:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tempsize.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26136:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDinqdatatype() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26217:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_GDinqgrid() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26288:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"Error calling \"HE5_GDgridinfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26361:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling \"HE5_GDinqfields()\" from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26373:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26383:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling \"HE5_GDinqfields()\" from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26462:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling \"HE5_GDprojinfo()\" from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26532:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling \"HE5_GDdefboxregion()\" from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26613:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dtype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26631:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDregioninfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26724:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDextractregion()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26801:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26812:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26825:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDattrinfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26913:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26924:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26935:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"size\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:26947:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDattrinfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27034:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27045:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27058:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDgrpattrinfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27147:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27158:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27169:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"size\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27182:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDgrpattrinfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27271:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27282:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27295:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDlocattrinfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27384:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27395:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27406:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"size\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27419:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDlocattrinfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27496:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDorigininfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27566:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDpixreginfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27637:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDcompinfo()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27708:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDnentries()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27775:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDinqattrs()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27842:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDinqgrpattrs()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27911:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDinqlocattrs()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:27979:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDdeftimeperiod()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28047:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDdefvrtregion()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28113:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDdupregion()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28183:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDgetpixels()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28251:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDgetpixvalues()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28317:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling \"HE5_GDinterpolate()\" from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28390:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tdims.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28410:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDdefcomtile() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28495:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28507:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in file list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28521:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot parse the input list/input list is empty.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28535:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input offset array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28548:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input size array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28573:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDsetextdata from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28663:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for output list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28676:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input offset array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28689:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input size array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28707:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDgetextdata from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28722:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in output file list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28790:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28799:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for aliaslist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28810:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in alias list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28824:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling GDsetalias() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28875:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28882:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling GDdropalias() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28934:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28941:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling GDaliasinfo() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28994:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29001:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the fields & aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29080:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29092:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29159:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29167:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29216:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29276:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29336:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29396:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29454:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29511:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29566:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29623:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29632:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29641:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29710:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29720:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29729:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29739:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"size\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29807:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29856:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lastables[256];
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29872:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(lastables, "STPDATADIR=");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29874:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(lastables,"/lib/ext/eosdata");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29945:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29957:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29969:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29982:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_GDfieldinfo. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:30042:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get information about Grid.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:30120:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Dimension rank doesn't match Max dimension rank.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:35:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ptname[HE5_OBJNAMELENMAX]; /* Point name */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:311:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:312:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:313:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf2[HE5_HDFE_UTLBUFSIZE];/* Utility buffer 2 */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:327:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking file ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:365:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"POINTS\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:387:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot retrieve the number of points.");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:419:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:428:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"_LevelWritten\" attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:438:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot wtrite data to the \"_LevelWritten\" attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:447:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:456:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"_LevelWritten\" attribute ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:466:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"Data\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:476:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"Linkage\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:485:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=Level\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:486:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=Level\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:487:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=LevelLink\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:488:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=LevelLink\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:504:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"POINTS\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:538:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\nNo more than %d points may be open simutaneously", HE5_NPOINT);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:591:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:685:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:686:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char LevelName[HE5_HDFE_UTLBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:687:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempname[HE5_HDFE_UTLBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:709:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:716:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( grpname, "/HDFEOS/POINTS/");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:799:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:804:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Iteration of \"HE5_EHobj_info()\" operation failed.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:824:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to get LevelName for the Level_%ld.", (long int) i) ;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:864:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the name.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:887:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"No more than %d points may be open simutaneously", HE5_NPOINT);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:944:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:954:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:965:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the number of levels. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:980:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the level dataset ID\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:998:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the group \"Data\" group ID \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1012:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the group \"Linkage\" group ID\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1027:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the Point group ID\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1169:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1180:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1191:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point ID: %ld\n", (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1200:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels Defined for point ID: %ld\n", nlevels,(long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1213:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1223:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of records.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1232:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1248:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the \"_LevelWritten\" attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1315:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
grpname = (char *) calloc( (strlen(HE5_PTXPoint[idx].ptname)+40),sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1325:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/POINTS/");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1327:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1387:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1396:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for info structure.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1407:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1433:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field name.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1451:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1476:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1495:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field class.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1513:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field rank.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1527:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field dimension sizes.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1552:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1576:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1636:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1646:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1658:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point ID: %ld\n", (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1668:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels Defined for point ID: %ld\n", nlevels,(long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1683:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the compound data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1694:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in compound data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1718:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the compound data field name. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1765:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the compound data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1833:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1847:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point ID: %ld\n", (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1857:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels Defined for point ID: %ld\n", nlevels, (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2001:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2002:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2014:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2041:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the number of levels\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2052:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the data space. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2063:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create a property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2074:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set chunking. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2086:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2109:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"array\" datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2120:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"array\" element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2131:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2145:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"array\" element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2161:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2172:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extend the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2184:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2195:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2206:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release a property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2227:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the data space. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2238:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create a property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2249:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set chunking. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2260:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create a compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2272:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot add a new member named \"BCKPOINTER\"to a compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2289:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2300:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extend the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2311:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2322:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2333:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2352:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2363:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create a compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2374:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot add a new member named \"BEGIN\"to a compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2385:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot add a new member named \"EXTENT\"to a compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2397:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2408:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extend the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2420:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create x-fer property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2431:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2442:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write data to the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2455:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2467:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2479:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2490:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2502:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2522:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert Point Level metadata \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2554:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2568:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert \"hid_t\" to \"hsize_t\" data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2598:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert Point Field metadata \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2668:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2670:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2682:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2694:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the number of levels\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2876:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error messge buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2891:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2907:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the attribute \"_LevelWritten\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2925:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write record to the attribute \"_LevelWritten\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2996:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3018:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for file ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3030:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the current number of records\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3041:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the number of levels\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3052:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point ID: %ld\n", (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3062:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels Defined for point ID: %ld\n", nlevels,(long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3075:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for datasize of records in level failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3084:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for info on level failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3093:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the buffer for reading existing records.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3102:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Reading existing records in level failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3112:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newdatabuff, val, nrec * datasize);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3119:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newdatabuff+(nrec * datasize), data, tcount[0]*datasize);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3131:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extend the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3143:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3154:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3166:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set type conversion and background buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3179:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write data to the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3196:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write data to the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3208:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3219:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3234:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write back pointer records. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3245:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write forward pointer records. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3450:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3457:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3491:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point ID: %ld\n", (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3500:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels Defined for point ID: %ld\n", nlevels,(long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3516:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the datatype ID for a level.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3528:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields for a level.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3539:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the size variable.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3550:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the order variable.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3568:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field name.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3581:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3594:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field class.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3611:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field rank.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3628:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field dimension sizes.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3646:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field base data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3665:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3678:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the field data size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3691:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the field data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3719:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3732:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the field data size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3792:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the field data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3806:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3882:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3901:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for the point ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3918:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point ID: %ld\n", (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3928:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels Defined for point ID: %ld\n", nlevels, (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3943:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3955:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the level information. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3980:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the read buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:3992:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the compound data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4039:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"array\" datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4050:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"array\" element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4061:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4083:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the field data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4097:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert atomic data element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4107:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4138:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert atomic data element.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4161:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the level dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4173:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4184:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4247:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4265:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Group \"%d\" unknown.\n", fieldgroup);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4331:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4340:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4405:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4414:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the attribute dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4489:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4498:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the attribute dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4507:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4737:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
grpname = (char *) calloc( (strlen(HE5_PTXPoint[idx].ptname)+40), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4745:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/POINTS/");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4806:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4832:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4852:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4913:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4928:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4948:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5011:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5025:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5045:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5107:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5121:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5141:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5214:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/POINTS/");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5216:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5280:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5307:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5348:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5411:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5427:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5467:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5533:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5548:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5587:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5653:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5668:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5707:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5783:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsname,"/HDFEOS/POINTS/");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5785:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(dtsname,"/Data/");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5850:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to begin/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5851:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name1[HE5_HDFE_NAMBUFSIZE]; /* Name string 1 */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5852:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name2[HE5_HDFE_NAMBUFSIZE]; /* Name string 2 */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5853:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5854:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error messg buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5861:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5874:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_PTXPoint[pID].ptname, "p","LevelLink", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5983:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6058:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6132:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6146:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of levels in point.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6153:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "There are no levels in point.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6247:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6281:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6292:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Passed wrong level number. Level should be > 0. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6315:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get information about current level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6347:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get member datatype size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6390:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No records in current level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6401:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No records in previous level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6412:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6439:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6449:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6462:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create Compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6476:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create array data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6493:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot add array data field. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6507:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from current level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6521:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from previous level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6535:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the array datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6571:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6581:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6594:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create Compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6619:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create array data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6633:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot add array data field. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6647:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from current level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6661:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from previous level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6675:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the array datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6714:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create Compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6728:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert data member. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6742:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from current level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6756:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from previous level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6794:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create Compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6808:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert data member. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6822:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from current level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6836:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from previous level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6874:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create Compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6888:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert data member. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6902:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from current level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6916:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from previous level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6953:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create Compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6967:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert data member. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6981:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from current level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6995:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read link field from previous level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7024:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Link record datatype is not supported. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7038:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7055:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open the \"BCKPOINTER\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7070:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extend the \"BCKPOINTER\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7082:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the datatype of \"BCKPOINTER\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7094:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7106:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7119:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write data to the \"BCKPOINTER\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7131:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7143:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7155:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7213:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7215:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7223:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7234:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Passed wrong level number. Level should be > 0. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7269:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"BCKPOINTER\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7281:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the Compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7292:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot insert data member to \"BCKPOINTER\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7303:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read data from the \"BCKPOINTER\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7314:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7325:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7401:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7402:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7410:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7435:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7444:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the back pointer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7470:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7492:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7507:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extend the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7521:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7629:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write data to the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7646:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7657:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7719:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7720:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7729:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7760:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7771:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create compound datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7782:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"BEGIN\" data member. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7793:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"EXTENT\" data member. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7805:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read \"FWDPOINTER\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7821:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7830:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7843:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read \"FWDPOINTER\" dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7854:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7864:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release datatype ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7933:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7934:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *pntr[HE5_HDFE_DIMBUFSIZE]; /* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7935:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7947:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7960:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:7968:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels defined for the point. \n", nlevels);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8013:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve number of records in Point. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8024:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the level information. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8047:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write updated data to the level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8061:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8073:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8086:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8098:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8114:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot select elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8126:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8142:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8153:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8164:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8181:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get backward linkage information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8197:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write backward pointer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8208:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write forward pointer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8228:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get forward linkage information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8244:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write backward pointer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8255:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write forward pointer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8343:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "File access flag is not supported. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8355:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PTopen() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8422:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PTcreate() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8492:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PTattach() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8565:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PTdetach() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8636:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PTclose() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8713:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8714:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *pntr[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8837:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Call to HE5_PTdeflevel() failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:8916:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PTdeflinkageF() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9004:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Reading data failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9077:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9085:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for the point ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9102:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point ID: %ld\n", (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9112:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels Defined for point ID: %ld\n", nlevels, (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9127:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9139:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the level information. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9154:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the read buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9208:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the compound data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9232:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"array\" datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9243:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"array\" element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9254:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9267:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"array\" element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9289:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the level dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9300:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9311:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9396:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write updated data to the level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9473:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9483:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for file ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9494:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the current number of records\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9505:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the number of levels\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9516:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point ID: %ld\n", (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9526:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels Defined for point ID: %ld\n", nlevels, (long int) pointID);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9541:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extend the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9556:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9565:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the level information. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9635:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9656:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"array\" datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9667:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"array\" element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9678:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9691:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"array\" element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9712:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9725:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set type conversion and background buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9736:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get X-fer property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9745:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set X-fer property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9754:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get X-fer property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9765:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write data to the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9776:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9787:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9852:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write back pointer records. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:9921:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write back pointer records. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10019:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Trouble calling HE5_PTupdatelevel_f(). \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10106:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10107:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *pntr[HE5_HDFE_DIMBUFSIZE]; /* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10108:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10119:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10131:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No Levels Defined for point.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10139:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Only %d levels defined for the point. \n", nlevels);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10160:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Should be only one field specified in fieldlist...nfields is not equal to 1 \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10199:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve number of records in Point. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10211:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the level information. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10234:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write updated data to the level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10251:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10264:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10277:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10287:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the level information. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10356:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10381:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create \"array\" datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10392:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"array\" element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10403:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10417:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert \"array\" element. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10441:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10453:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set type conversion and background buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10462:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get X-fer property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10470:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set X-fer property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10478:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get X-fer property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10491:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10504:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10520:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot select elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10532:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10548:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10559:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10570:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10587:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get backward linkage information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10603:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write backward pointer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10614:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write forward pointer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10634:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get forward linkage information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10650:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write backward pointer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10661:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write forward pointer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10745:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10764:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10774:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10777:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10785:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10895:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10906:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10924:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of group attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10934:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10937:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10945:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10951:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10968:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11041:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11059:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11078:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of local attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11088:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11091:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11099:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11107:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write local attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11126:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write local attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11180:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11189:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the attribute value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11236:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11291:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11418:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Call to HE5_PTgetfort_order() failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11432:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error with number of elements processed by HE5_PTgetfort_order or HE5_ptc2fort.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11554:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Bad datatype value in call to HE5_PTc2fort. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11687:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Call to HE5_PTgetfort_order() failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11701:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error with number of elements processed by HE5_PTgetfort_order or HE5_ptfort2c.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11819:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Bad datatype value in call to HE5_PTfort2c. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11929:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Call to HE5_PTgetfort_order() failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12016:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No records in current level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12080:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the number of levels. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12143:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the number of fields. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12210:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the Level Index. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12278:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the Level Name. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12345:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error in Fortran Wrapper HE5_PTbcklinkinfoF(). \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12413:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error in Fortran Wrapper HE5_PTfwdlinkinfoF(). \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12478:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12489:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Call to HE5_PTlevelinfo failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12511:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Call to HE5_PTgetlevelname failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12627:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for typeID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12637:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tsize.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12648:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for classID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12660:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for order.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12677:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12733:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12738:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the list of Point names. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12806:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12816:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12908:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12918:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:12928:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13021:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13031:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13044:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13125:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13135:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13145:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13158:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13237:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13247:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13260:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about local attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13342:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13352:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13362:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13375:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about local attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13434:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13437:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1] = {'0'};
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13438:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer1[1] = {'1'};
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13457:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13508:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13511:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1] = {'0'};
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13512:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer1[1] = {'1'};
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13530:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13579:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13581:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1] = {'0'};
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13582:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer1[1] = {'1'};
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13600:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13651:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13662:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Call to HE5_PTlevelinfo failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13716:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13724:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the size of member daat type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13733:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the field data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13742:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13793:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to begin/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13794:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name1[HE5_HDFE_NAMBUFSIZE]; /* Name string 1 */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13795:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_subgroupname[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13796:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13797:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error messg buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13808:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for point ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13823:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(level_subgroupname, "Level_%d", level);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13827:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_PTXPoint[pID].ptname, "p",
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:45:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char swname[HE5_OBJNAMELENMAX];/* swath name */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:61:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *DimNamePtr[HE5_DTSETRANKMAX];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:475:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot call HE5_SWcreate on a file opened read-only.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:482:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for file ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:527:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the \"SWATHS\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:552:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot retrieve the number of swaths.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:599:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the \"Geolocation Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:613:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the \"Data Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:667:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=Dimension\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:668:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=Dimension\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:669:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=DimensionMap\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:670:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=DimensionMap\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:671:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=IndexDimensionMap\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:672:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=IndexDimensionMap\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:673:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=GeoField\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:674:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=GeoField\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:675:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=DataField\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:676:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=DataField\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:677:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=ProfileField\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:678:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=ProfileField\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:679:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=MergedFields\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:680:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=MergedFields\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:689:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot insert metadata buffer to \"StructMetadata\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:706:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"SWATHS\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:748:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\n Illegal attempt to open more than %d swaths simultaneously.\n", HE5_NSWATH);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:854:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer*/
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:884:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for grpname.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:891:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( grpname, "/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:917:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open the \"Geolocation Fields\" group.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:930:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open the \"Data Fields\" group. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:987:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for tmpname1. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:996:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmpname1,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1008:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Iteration of \"HE5_EHobj_info()\" operation failed. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1039:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for namebuf. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1065:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for fldname. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1101:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the dataset name. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1138:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for tmpname2. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1147:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmpname2,"/Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1158:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Iteration of \"HE5_EHobj_info()\" operation failed. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1190:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for namebuf. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1216:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for fldname. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1248:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for name. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1287:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for tmpname3. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1296:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmpname3,"/Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1308:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Iteration of \"HE5_EHobj_info()\" operation failed. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1338:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for namebuf. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1364:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for fldname buffer. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1399:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for profile name. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1436:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\n Illegal attempt to open more than %d swaths simultaneously. \n", HE5_NSWATH);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1487:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1516:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot set up the swath index.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1527:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for file ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1582:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1592:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1603:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1667:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1681:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1692:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1771:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1784:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1795:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1812:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1823:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1833:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1844:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1845:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1859:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1918:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Geo Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1929:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1939:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Geo Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1950:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1951:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1965:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2069:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2082:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2093:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2110:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2121:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2131:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2142:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2143:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2157:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2216:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Geo Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2227:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2237:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Geo Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2248:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2249:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2263:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2366:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2367:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2433:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for dimscale\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2448:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2549:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create a new property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2560:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get layout information for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2573:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create dataspace for the dimension scale dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2598:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2608:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2740:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2741:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2807:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for dimscale\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2822:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2923:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create a new property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2934:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get layout information for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2948:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create dataspace for the dimension scale dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2973:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:2983:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3125:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3126:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3157:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3266:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3278:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve data type size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3379:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3415:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3435:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3447:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3459:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read out the data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3469:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3479:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the memory data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3489:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3549:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3652:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3754:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3813:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3925:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to the start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3926:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE];/* Utility string buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3927:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3937:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "Dimension", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3958:15: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size = atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3961:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Returning zero \"Size\" value from Metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:3968:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"Size\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4040:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4041:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE];/* Utility string buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4042:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4060:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "DimensionMap", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4077:16: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*offset = atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4081:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"Offset\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4091:19: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*increment = atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4165:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_DIMBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4166:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4209:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4221:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert to memory data type. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4233:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read out the data. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4245:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4257:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4332:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fieldname[HE5_HDFE_NAMBUFSIZE]; /* Field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4333:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual name of a field */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4335:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to the start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4337:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4348:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *HDFcomp[18] = {"HE5_HDFE_COMP_NONE", "HE5_HDFE_COMP_RLE", "HE5_HDFE_COMP_NBIT", "HE5_HDFE_COMP_SKPHUFF", "HE5_HDFE_COMP_DEFLATE", "HE5_HDFE_COMP_SZIP_CHIP", "HE5_HDFE_COMP_SZIP_K13", "HE5_HDFE_COMP_SZIP_EC", "HE5_HDFE_COMP_SZIP_NN", "HE5_HDFE_COMP_SZIP_K13orEC", "HE5_HDFE_COMP_SZIP_K13orNN", "HE5_HDFE_COMP_SHUF_DEFLATE", "HE5_HDFE_COMP_SHUF_SZIP_CHIP", "HE5_HDFE_COMP_SHUF_SZIP_K13", "HE5_HDFE_COMP_SHUF_SZIP_EC", "HE5_HDFE_COMP_SHUF_SZIP_NN", "HE5_HDFE_COMP_SHUF_SZIP_K13orEC", "HE5_HDFE_COMP_SHUF_SZIP_K13orNN"}; /* Compression method Codes */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4363:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4375:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4403:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4419:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s","GeoField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4432:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "ProfileField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4441:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf , "Cannot get the field group code.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4505:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the Swath index \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4651:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"\"CompressionParams\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4666:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"DeflateLevel\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4681:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4696:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4711:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4726:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4741:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4756:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4771:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"DeflateLevel\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4786:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4801:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4816:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4831:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4846:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4861:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4927:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4936:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5005:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for namebuf.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5132:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL, NULL}; /* Ptrs to the begining and end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5133:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE]; /* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5134:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX]; /* String pointers for parsed string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5135:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimstr[HE5_HDFE_DIMBUFSIZE]; /* Individual dimension entry string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5136:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimstr[HE5_HDFE_DIMBUFSIZE]; /* Individual max. dimension entry string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5137:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5160:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5174:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "GeoField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5179:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5186:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get pointer to metabuf.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5321:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"DataType\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5342:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert from \"long\" to \"int\" data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5352:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"DimList\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5398:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"MaxdimList\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5434:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5447:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the rank of the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5459:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the dimension array of the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5471:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5539:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fieldname[HE5_HDFE_NAMBUFSIZE]; /* field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5540:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual field name */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5541:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5555:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5646:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5661:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5705:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the rank of the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5716:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the layout of the raw data. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5728:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the sizes of chunks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5744:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5755:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5808:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mapname[HE5_HDFE_NAMBUFSIZE];/* Mapping name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5809:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5856:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write \"Dimension Map\" offset and increment values to Structural Metadata.");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5924:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mapname[HE5_HDFE_NAMBUFSIZE];/* Mapping name */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5925:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_DIMBUFSIZE]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5926:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5978:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the data space. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5989:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6000:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write data to the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6012:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert data to the Metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6023:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6034:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the dataset ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6091:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6107:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6119:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the \"CHUNKED\" type of storage. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6130:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the sizes of chunks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6209:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6227:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid/unsupported compression code. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6242:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid GZIP compression level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6258:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid SZIP compression block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6279:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Unable to compress, dataset storage layout has not been set to CHUNKED. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6289:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the layout of the raw data. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6299:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the \"CHUNKED\" type of storage of the raw data. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6328:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6351:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6359:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6383:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6391:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6414:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6422:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6445:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6453:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6477:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orEC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6485:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6509:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6517:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6537:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6546:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6566:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6578:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6586:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6606:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6618:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6626:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6646:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6658:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6666:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6686:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6698:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6706:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6726:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6739:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orEC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6747:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6767:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6780:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6788:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6812:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid compression method \"%d\" . \n", compcode);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6904:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6923:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid/unsupported compression code. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6938:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid GZIP compression level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6954:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid SZIP compression block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:6988:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the \"CHUNKED\" type of storage. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7002:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the layout of the raw data. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7016:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the \"CHUNKED\" type of storage. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7031:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the sizes of chunks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7047:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the sizes of chunks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7055:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid dataset rank,\"%d\" . \n", rank);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7084:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7107:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7115:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7138:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7146:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7169:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7177:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7200:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7208:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7232:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orSZIP_EC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7240:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7264:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7272:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7292:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7301:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7321:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7333:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7341:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7361:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7373:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7381:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7401:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7413:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7421:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7441:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7453:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7461:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7481:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7494:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orEC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7502:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7522:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7535:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7543:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7567:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (unsupported) compression method \"%d\". \n", compcode);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7678:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7679:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf2[HE5_HDFE_UTLBUFSIZE]; /* Utility buffer 2 */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7680:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf1[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer 1 */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7681:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf2[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer 2 */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7682:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7683:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlstbuf[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7684:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlstbuf[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7685:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char compparmbuf[HE5_HDFE_DIMBUFSIZE];/* Compression parmeter */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7686:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *HDFcomp[18] = {"HE5_HDFE_COMP_NONE", "HE5_HDFE_COMP_RLE", "HE5_HDFE_COMP_NBIT", "HE5_HDFE_COMP_SKPHUFF", "HE5_HDFE_COMP_DEFLATE", "HE5_HDFE_COMP_SZIP_CHIP", "HE5_HDFE_COMP_SZIP_K13", "HE5_HDFE_COMP_SZIP_EC", "HE5_HDFE_COMP_SZIP_NN", "HE5_HDFE_COMP_SZIP_K13orEC", "HE5_HDFE_COMP_SZIP_K13orNN", "HE5_HDFE_COMP_SHUF_DEFLATE", "HE5_HDFE_COMP_SHUF_SZIP_CHIP", "HE5_HDFE_COMP_SHUF_SZIP_K13", "HE5_HDFE_COMP_SHUF_SZIP_EC", "HE5_HDFE_COMP_SHUF_SZIP_NN", "HE5_HDFE_COMP_SHUF_SZIP_K13orEC", "HE5_HDFE_COMP_SHUF_SZIP_K13orNN"}; /* Compression code names */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7694:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf1, "HE5_SWXSDname array too small.\nPlease increase ");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7695:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf1, "size of HE5_HDFE_NAMBUFSIZE in \"HE5_HdfEosDef.h\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7696:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf2, "HE5_SWXSDdims array too small.\nPlease increase ");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7697:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf2, "size of HE5_HDFE_DIMBUFSIZE in \"HE5_HdfEosDef.h\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7911:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Dimension rank doesn't match Maximum dimension rank. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7993:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid (unsupported) field group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8225:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the size of a datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8236:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for fill value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8263:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot store fill value in the attribute \"_FillValue\".");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8427:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Compression code \"%d\" is not supported. \n", compcode);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8451:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8465:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert \"hid_t\" to \"hsize_t\" data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8562:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8595:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for Geolocation Field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8645:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8678:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for Data Field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8740:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8741:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_DIMBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8751:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8767:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert metadata value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8786:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert metadata value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8845:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8846:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_DIMBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8856:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8872:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert metadata value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8891:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert metadata value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8945:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8972:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write the attribute value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9027:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9042:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the attribute value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9097:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9111:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve information about attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9165:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9179:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve information about attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9230:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9246:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9252:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9315:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9316:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE]; /* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9317:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9325:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9337:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "Dimension", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9395:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size = (hsize_t)atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9460:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9461:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE];/* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9462:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9470:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9482:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "DimensionMap", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9537:20: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
off = atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9546:23: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
incr = atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9613:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Pntrs to start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9616:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9624:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9635:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9648:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "IndexDimensionMap", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9788:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9790:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9791:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE]; /* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9792:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr2[HE5_HDFE_UTLBUFSIZE];/* Utility string 2 */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9793:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX]; /* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9795:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9810:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9835:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "GeoField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9836:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr2, "GeoFieldName");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9841:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup( fid, HE5_SWXSwath[idx].swname, "s", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9842:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr2, "DataFieldName");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9881:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\t\t\t");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9915:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9936:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9949:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type class ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9972:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to see if string field is varaible or fixed length.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9988:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10038:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10104:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10112:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10123:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inquiry about fields in \"Data Fields\" group fails. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10171:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10178:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Geolocation Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10189:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inquiry about fields in \"Geolocation Fields\" group fails. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10265:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10311:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid group flag (\"%d\"). \n", group);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10616:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10617:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE];/* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10618:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char valName[2][32]; /* Strings to search for */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10619:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10642:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "Dimension", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10644:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "DimensionName");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10652:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "DimensionMap", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10654:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "GeoDimension");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10655:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[1][0], "DataDimension");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10663:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s","IndexDimensionMap", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10665:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "GeoDimension");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10666:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[1][0], "DataDimension");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10674:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "GeoField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10676:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "GeoFieldName");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10684:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10686:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "DataFieldName");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10692:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid (unsupported) entry code \"%d\". \n", entrycode);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10703:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the number of entries. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10719:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "\t\tOBJECT");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10745:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get metavalue. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10822:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10831:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about Swath. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10985:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fieldname[HE5_HDFE_NAMBUFSIZE]; /* Field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10986:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual field name */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10987:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE]; /* Maximum dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10988:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10991:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11066:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11072:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dimbuf1,dimlist, strlen(dimlist));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11077:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11084:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dimbuf2,maxdimlist, strlen(maxdimlist));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11093:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11109:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11134:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot update the dimension, new dimension size is larger than the max dimension size in the datafiled.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11150:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot update the dimension.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11183:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11232:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11247:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11282:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Maximum dimension size is smaller than dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11347:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot extend the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11379:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11411:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot select a hyperslab. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11440:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11465:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11489:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data type class ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11516:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11539:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for attrlist1.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11562:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11593:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11624:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11652:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for attrlist2.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11680:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11764:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11800:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11828:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11874:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11902:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11927:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11965:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release memory data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11977:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11989:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12258:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fieldname[HE5_HDFE_NAMBUFSIZE]; /* Buffer for name of a field */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12259:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual name of a field */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12261:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[HE5_HDFE_NAMBUFSIZE]; /* Field Name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12262:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12277:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12377:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12390:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset rank.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12405:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12416:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data space dimension sizes.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12427:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12438:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12499:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12521:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data dataset ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12549:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the profile dataset ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12576:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the geolocation dataset ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12600:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"Geolocation Fields\" group ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12614:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"Data Fields\" group ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12628:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"Profile Fields\" group ID.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12642:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the swath group ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12806:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12807:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char latName[16]; /* Latitude field name */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12808:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12823:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Improper Inclusion Mode: %d.\n", mode);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12843:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\"Longitude\" field not found.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12861:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf, "Neither \"Latitude\" nor \"Colatitude\" fields found.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12869:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(latName, "Colatitude");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12876:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(latName, "Latitude");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12885:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"The size of a data type = 0.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12895:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12942:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12980:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
flag = (unsigned char *) calloc(edge[0] + 1, sizeof(unsigned char ));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13129:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
lonArr = (char *) calloc(dims[1], sizeof(double));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13137:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
latArr = (char *) calloc(dims[1], sizeof(double));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13169:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13329:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "regionID exceeded HE5_NSWATHREGN.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13364:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "HE5_SWXRegion[%ld]->nRegions exceeded HE5_MAXNREGIONS = %d.\n", k, HE5_MAXNREGIONS);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13394:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13403:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid region ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13512:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list (geo fields) */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13513:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char latName[16]; /* Latitude field name */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13514:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13528:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Improper Inclusion Mode: %d.\n", mode);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13548:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13560:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"Longitude\" field not found.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13579:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Neither \"Latitude\" nor \"Colatitude\" fields found.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13588:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(latName, "Colatitude");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13595:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(latName, "Latitude");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13606:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve geo map information.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13639:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13666:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13706:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
flag = (unsigned char *)calloc(edge[0] + 1, sizeof(unsigned char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13754:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13767:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13780:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13793:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot close the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13901:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
lonArr = (char *)calloc(dims[1], sizeof(double));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13911:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
latArr = (char *)calloc(dims[1], sizeof(double));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13977:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13990:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14003:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14016:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot close the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14179:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14214:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14228:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14336:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE]; /* Dim. list (geo flds) */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14337:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14358:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14368:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "\"Time\" field not found.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14397:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14411:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14437:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14487:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14668:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14669:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char geodim[HE5_HDFE_DIMBUFSIZE]; /* Geolocation dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14670:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tgeodim[HE5_HDFE_DIMBUFSIZE];/* Time field dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14671:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_DIMBUFSIZE]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14672:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX]; /* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14673:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14688:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14701:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inactive Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14714:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Region is not defined for this file.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14727:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Region is not defined for this SWath.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14780:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15334:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15335:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15406:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"Cannot allocate memory for data type class ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15449:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Fieldtype not supported for vertical subsetting");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15503:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
vertArr = (char *)calloc(dims[0], size);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15576:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No vertical field entries within region.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15642:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No vertical field entries within region.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15711:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No vertical field entries within region.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15780:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "No vertical field entries within region.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15857:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15890:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for fillvalue.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15903:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15916:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the dataset property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15995:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16007:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16027:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve fillvalue attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16036:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for attrnames.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16045:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve fillvalue attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16140:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve fillvalue attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16235:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16236:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char geodim[HE5_HDFE_DIMBUFSIZE]; /* Geolocation field dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16237:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tgeodim[HE5_HDFE_DIMBUFSIZE];/* Time Geolocation field dim. list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16238:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_DIMBUFSIZE]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16239:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX]; /* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16241:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16256:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid Region id: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16269:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Inactive Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16354:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16370:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16717:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16736:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16749:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inactive Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16778:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inactive Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16881:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16897:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid Region id: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16910:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inactive Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17011:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrsr[2]={NULL,NULL};/* Pntrs to begin, end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17012:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrsi[2]={NULL,NULL};/* Pntrs to begin, end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17013:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstrr[HE5_HDFE_DIMBUFSIZE]; /* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17014:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstri[HE5_HDFE_DIMBUFSIZE]; /* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17015:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17024:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabufr = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "DimensionMap", metaptrsr);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17027:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get pointer to metabufer. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17039:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabufi = (char *)HE5_EHmetagroup(fid, HE5_SWXSwath[idx].swname, "s", "IndexDimensionMap", metaptrsi);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17042:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for metabufi.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17123:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17144:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the dataset data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17153:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17162:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17190:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the dataset data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17199:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17208:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17275:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17303:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17321:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17378:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17394:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17412:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17471:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17485:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17503:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17562:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17576:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17594:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17652:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17669:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17671:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17678:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17734:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17762:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Geolocation Fields\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17780:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Geolocation Fields\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17836:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17852:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Geolocation Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17870:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Geolocation Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17926:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17940:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Geolocation Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:17958:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Geolocation Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18014:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18028:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Geolocation Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18046:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Geolocation Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18102:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18119:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18121:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18128:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18195:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18223:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18242:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18245:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18248:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18373:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18390:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18409:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18412:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18415:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18542:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18557:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18576:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18579:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18582:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18637:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the field group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18708:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18723:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18742:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18745:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18748:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18803:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the field group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18861:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18874:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for swath ID failed.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18883:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Can not allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18889:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18958:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18972:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the dataset name buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18983:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19004:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/Geolocation Fields/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19007:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/Data Fields/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19010:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/Profile Fields/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19012:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19022:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19115:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlstbuf[HE5_HDFE_DIMBUFSIZE];/* Max. dim. list buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19116:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlstbuf[HE5_HDFE_DIMBUFSIZE]; /* Dim. list buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19117:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char compparmbuf[HE5_HDFE_DIMBUFSIZE]; /* Compression parameter */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19118:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19119:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf2[HE5_HDFE_UTLBUFSIZE]; /* Utility buffer 2 */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19120:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19121:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *HDFcomp[18] = {"HE5_HDFE_COMP_NONE", "HE5_HDFE_COMP_RLE", "HE5_HDFE_COMP_NBIT", "HE5_HDFE_COMP_SKPHUFF", "HE5_HDFE_COMP_DEFLATE", "HE5_HDFE_COMP_SZIP_CHIP", "HE5_HDFE_COMP_SZIP_K13", "HE5_HDFE_COMP_SZIP_EC", "HE5_HDFE_COMP_SZIP_NN", "HE5_HDFE_COMP_SZIP_K13orEC", "HE5_HDFE_COMP_SZIP_K13orNN", "HE5_HDFE_COMP_SHUF_DEFLATE", "HE5_HDFE_COMP_SHUF_SZIP_CHIP", "HE5_HDFE_COMP_SHUF_SZIP_K13", "HE5_HDFE_COMP_SHUF_SZIP_EC", "HE5_HDFE_COMP_SHUF_SZIP_NN", "HE5_HDFE_COMP_SHUF_SZIP_K13orEC", "HE5_HDFE_COMP_SHUF_SZIP_K13orNN"}; /* Compression code names */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19156:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for PR Field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19167:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19372:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Dimension rank doesn't match Maximum dimension rank. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19448:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the \"Profile Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19546:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"Profile\" structure. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19560:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"Profile\" structure. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19730:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Compression code \"%d\" is not supported. \n", compcode);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19750:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19764:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert \"hid_t\" to \"hsize_t\" data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19790:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19803:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19910:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19927:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19999:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the base data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20010:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the memory data type from the base data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20021:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create data type from the base data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20033:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the size of a base data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20045:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for fill value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20071:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write fill value to the attribute \"_FillValue\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20086:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data space dimension size and maximum dimension size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20105:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Maximum dimension size is smaller than dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20122:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extend the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20134:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot select a hyperslab. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20145:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the memory data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20191:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the file data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20202:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the memory data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20217:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the property list ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20242:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the xfer property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20254:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20265:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20341:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20352:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20394:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the property list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20419:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20431:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the base data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20443:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the memory data type from the base data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20455:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create data type from the base data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20467:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset rank.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20478:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot select the hyperslab.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20490:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the memory dataspace.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20520:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20531:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release memory space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20542:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release base data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20552:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20652:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20662:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20679:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot reclaim the memory space. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20690:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20701:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20712:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20781:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20801:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20810:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"groupname\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20816:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(groupname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20818:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(groupname,"/Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20828:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Iteration through the \"Profile Fields\" group failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20851:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"namebuf\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20876:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"Profile name\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20908:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20920:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get dataset rank.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20932:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20950:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20962:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get base data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20979:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data type class ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20991:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21007:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21098:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL,NULL}; /* Ptrs to the begining and end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21099:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE]; /* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX]; /* String pointers for parsed string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21101:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimstr[HE5_HDFE_DIMBUFSIZE]; /* Individual dimension entry string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21102:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimstr[HE5_HDFE_DIMBUFSIZE];/* Individual max. dimension entry string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21103:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21112:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21138:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21163:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21174:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get base data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21185:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data type class ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21196:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get base number type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21207:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21220:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21232:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21241:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid,HE5_SWXSwath[idx].swname,"s","ProfileField",metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21245:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get pointer to metabuf.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21295:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"DimList\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21342:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"MaxdimList\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21420:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21448:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Profile Fields\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21466:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Profile Fields\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21521:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21537:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Profile Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21555:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Profile Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21611:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21625:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Profile Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21643:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Profile Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21699:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21713:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Profile Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21731:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Profile Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21786:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21798:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21804:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21806:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21813:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21873:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21886:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21919:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot alocate memory for \"buf\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21941:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot alocate memory for \"aliasname\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22021:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22032:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22048:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid input group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22113:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22129:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22131:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22138:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the fields & aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22148:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22199:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22215:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22217:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22224:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the fields & aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22234:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22292:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22301:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22318:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid input group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22331:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"statbuf\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22435:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22463:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22475:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22488:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22502:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields & aliases in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22515:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22529:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields & aliases in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22546:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Geolocation Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22558:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22571:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Geolocation Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22585:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields & aliases in \"Geolocation Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22598:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22612:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields & aliases in \"Geolocation Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22623:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid input group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22633:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the aliases.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22650:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"buff\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22664:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"tmpbuf\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22688:19: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"nameptr\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22736:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the aliases.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22756:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the aliases.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22770:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22831:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22844:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22861:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error returning field group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22956:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char grpname[HE5_HDFE_NAMBUFSIZE];/* Group name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22957:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22968:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22974:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22978:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22981:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22984:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23059:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char grpname[HE5_HDFE_NAMBUFSIZE];/* Group name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23060:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23070:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23076:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23080:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23083:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23086:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23101:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot close external file. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23158:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char grpname[HE5_HDFE_NAMBUFSIZE];/* Group name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23159:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23170:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23176:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/SWATHS/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23180:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23183:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Profile Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23186:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Geolocation Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23194:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open group containing mounted file. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23205:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open mounted dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23216:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID of mounted dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23227:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert to memory data type.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23238:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read mounted data.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23250:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23261:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release dataset ID.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23272:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release group ID.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23332:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23345:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23392:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for filename. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23410:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot set external dataset property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23494:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23506:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid swath ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23539:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of external files.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23569:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about external file.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23600:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release property list ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23645:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
HE5_SWindexinfo(hid_t regionID, char *object, int *rank, char *dimlist, hsize_t *indices[HE5_DTSETRANKMAX])
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23645:58: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
HE5_SWindexinfo(hid_t regionID, char *object, int *rank, char *dimlist, hsize_t *indices[HE5_DTSETRANKMAX])
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23652:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23654:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23665:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23676:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inactive Region ID: %ld.\n", (long int) regionID);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23692:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23847:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23848:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list*/
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23850:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23854:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimname0[HE5_HDFE_DIMBUFSIZE],dimname1[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23855:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char geodim[HE5_HDFE_DIMBUFSIZE]; /* Geolocation field dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23856:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxgeodim[HE5_HDFE_DIMBUFSIZE];/* Geolocation field max dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23857:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char geodimbuf[HE5_HDFE_DIMBUFSIZE];/* Geolocation field dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23861:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX],*ptr2[HE5_DTSETRANKMAX]; /* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23864:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_DIMBUFSIZE]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23916:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(geodimbuf, ptr[iDim], slen[iDim]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23931:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(utlbuf, ptr2[i], slen2[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23982:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(utlbuf, ptr2[i], slen2[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24045:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual field name */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24046:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fieldname[HE5_HDFE_NAMBUFSIZE]; /* Field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24059:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get strig type for none-string field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24072:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24107:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for attrlist1.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24224:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "File access flag is not supported. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24304:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create Swath. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24356:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24409:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24416:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot detach from the Swath. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24463:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24470:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot close the file. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24531:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_SWdefdim from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24604:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling SWdefdimmap from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24665:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling SWdefidxmap from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24752:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert \"int\" data type ID to HDF5 data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24765:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24777:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24792:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for maxdimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24805:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in maximum dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24829:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_SWdefinefield() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24929:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24941:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24956:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for maxdimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24970:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in maximum dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25047:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25054:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWdefcomp() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25126:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tempdims.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25145:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWdefchunk() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25201:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25309:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25319:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25330:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25354:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tmpString.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25467:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_SWfieldinfo() from FORTRAN wrapper. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25570:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25580:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25591:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25612:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25715:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_SWfieldinfo() from FORTRAN wrapper. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25803:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25823:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25833:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25836:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25844:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25925:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25930:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25986:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26085:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26094:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26104:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26251:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26260:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26270:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26303:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Element length passed in is not correct. Should be same as in declration");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26352:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Number of elements passed in cannot be zero.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26386:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Number of elements passed in cannot be zero.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26418:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strcpy((char *)buffer,strdatabuf[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26426:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strcat((char *)buffer,strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26505:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26514:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the attribute value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26561:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26616:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26692:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26710:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26731:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of local attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26741:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26744:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26752:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26760:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write local attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26779:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write local attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26832:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26886:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26895:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWinqmaps() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26948:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26957:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWnentries() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26968:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tidxsizes.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26980:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWinqidxmaps() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27040:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27048:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWnentries() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27057:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tdims.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27067:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_SWinqdims() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27126:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27135:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get information about fields in \"Geolocation Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27144:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27153:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get information about fields in \"Geolocation Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27207:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27217:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27226:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27236:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27292:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27299:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling SWdiminfo() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27350:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27362:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get mapping information.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27411:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27418:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get geolocation mapping information.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27499:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27536:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27550:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in maximum dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27636:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWchunkinfo() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27700:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27707:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling SWidxmapinfo() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27785:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27796:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27815:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of group attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27825:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27828:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27836:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27842:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27859:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27942:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27952:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27971:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of group attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27981:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27984:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27992:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27998:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28015:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28094:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28104:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28206:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28216:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28227:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28325:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28335:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28349:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28433:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28443:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28454:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28466:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28546:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28556:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28570:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28650:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28660:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28671:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28684:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28743:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28750:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28795:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28802:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28846:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28854:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28926:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28936:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:28949:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about local attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29036:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29046:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29057:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29069:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about local attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29136:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29143:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29221:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for typeID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29231:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tsize.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29242:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for classID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29254:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for order.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29272:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29344:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error buffer string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29351:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot define box region.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29400:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[16]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29401:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29405:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(utlbuf, vertObj, 4);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29429:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot define vertical region.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29493:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error buffer string */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29501:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tsize.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29510:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29527:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about region.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29603:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29611:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot extract region data.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29664:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29672:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot define time period.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29738:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29748:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tsize.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29757:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29774:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about region.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29894:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29903:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot update scene.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29960:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:29967:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the region indices.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30024:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30036:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot extract the period.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30086:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30094:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to update index mapping.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30136:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30141:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about Swath.");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30185:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30193:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Failed to get number of entries in a swath.");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30250:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30269:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30280:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30294:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for maxdimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30307:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in maximum dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30412:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30425:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30451:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30463:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get base data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30474:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get size of base data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30485:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30496:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30518:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30527:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30537:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30565:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for buffer_char.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30579:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for profile_buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30630:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PRinfo() from FORTRAN wrapper. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30710:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30723:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for swath ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30749:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30760:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get size of variable length data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30771:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get base data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30782:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get size of base data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30793:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30804:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release dataset ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30828:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30837:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30847:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30893:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PRinfo() from FORTRAN wrapper. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30919:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for buffer_char.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30943:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot reclaim the memory space. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31005:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31013:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PRinquire() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31022:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for dtype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31032:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_PRinquire() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31104:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31114:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31160:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31173:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in maximum dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31261:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31271:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31290:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of group attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31300:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31303:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31311:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31317:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31334:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31387:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31461:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31471:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31484:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31566:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31576:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31587:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31599:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31659:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31666:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31714:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31723:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for aliaslist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31734:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in alias list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31748:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling SWsetalias() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31799:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31806:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWdropalias() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31855:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31862:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the fields & aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31908:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31915:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the fields & aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31964:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31971:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWaliasinfo() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32020:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32027:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling SWfldrename() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32100:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tempdims.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32119:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_SWdefcomchunk from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32183:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32190:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32201:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in file list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32214:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot parse the input list/input list is empty.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32227:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input offset array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32239:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input size array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32263:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_SWsetextdata from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32331:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32338:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for output list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32349:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input offset array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32361:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input size array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32378:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_SWgetextdata from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32392:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in output file list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32456:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32470:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32488:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about indices.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32507:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32622:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32634:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32734:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32746:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32809:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32817:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32867:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32927:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32988:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33048:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33106:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33163:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33218:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33275:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33284:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33293:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33360:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33370:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33379:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33388:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"size\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33455:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33505:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33517:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33527:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33540:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_SWfieldinfo. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33651:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Dimension rank doesn't match Max dimension rank.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:56:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:68:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to initialize the mutex.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:78:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to initialize the condition variable.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:122:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:138:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to initialize the mutex.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:154:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to lock the mutex.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:172:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for master thread ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:187:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to block the thread on condition variable.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:197:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for master thread ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:219:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to unlock the mutex.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:266:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:279:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to unlock the mutex.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:293:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to unblock the thread blocked on a condition variable.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/TSapi.c:305:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to unlock the mutex.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:36:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zaname[HE5_OBJNAMELENMAX];/* za name */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:318:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot call HE5_ZAcreate on a file opened read-only.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:325:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for file ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:371:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the \"ZAS\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:396:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot retrieve the number of zas.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:444:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the \"Data Fields\" group.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:482:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=Dimension\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:483:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=Dimension\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:484:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=DimensionMap\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:485:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=DimensionMap\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:486:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=IndexDimensionMap\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:487:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=IndexDimensionMap\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:488:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tGROUP=DataField\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:489:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(utlbuf, "\t\tEND_GROUP=DataField\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:498:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot insert metadata buffer to \"StructMetadata\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:515:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"ZAS\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:555:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\n Illegal attempt to open more than %d zas simultaneously.\n", HE5_NZA);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:643:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer*/
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:673:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for grpname.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:680:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( grpname, "/HDFEOS/ZAS/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:707:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open the \"Data Fields\" group. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:745:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for tmpname. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:754:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:766:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Iteration of \"HE5_EHobj_info()\" operation failed. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:797:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for namebuf. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:823:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for fldname. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:859:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the dataset name. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:894:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"\n Illegal attempt to open more than %d zas simultaneously. \n", HE5_NZA);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:950:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:979:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot set up the za index.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:990:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for file ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1040:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1050:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1061:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1130:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1143:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1154:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1171:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1182:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1192:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1203:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1204:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1218:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1324:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1337:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for Za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1348:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (zero) dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1365:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1376:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1386:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1397:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1398:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdimlist[HE5_HDFE_DIMBUFSIZE];/* Dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1412:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1516:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1517:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1575:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for dimscale\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1590:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for ZA ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1666:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create a new property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1677:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get layout information for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1690:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create dataspace for the dimension scale dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1715:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1725:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1818:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1819:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1877:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for dimscale\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1892:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for ZA ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1968:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create a new property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1979:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get layout information for the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:1993:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create dataspace for the dimension scale dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2018:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2028:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2135:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2136:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2166:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for ZA ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2257:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2269:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve data type size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2370:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2406:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2426:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2438:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2450:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read out the data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2460:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the datatype ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2470:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the memory data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2480:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2540:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2642:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2752:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2864:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2974:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2987:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for ZA ID failed.\n" );
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:2996:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Can not allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3002:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsname,"/HDFEOS/ZAS/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3060:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to the start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3061:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE];/* Utility string buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3062:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3072:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_ZAXZa[idx].zaname, "z", "Dimension", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3093:15: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size = atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3096:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Returning zero \"Size\" value from Metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3103:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"Size\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3168:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fieldname[HE5_HDFE_NAMBUFSIZE]; /* Field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3169:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual name of a field */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3171:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to the start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3173:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3174:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *HDFcomp[18] = {"HE5_HDFE_COMP_NONE", "HE5_HDFE_COMP_RLE", "HE5_HDFE_COMP_NBIT", "HE5_HDFE_COMP_SKPHUFF", "HE5_HDFE_COMP_DEFLATE", "HE5_HDFE_COMP_SZIP_CHIP", "HE5_HDFE_COMP_SZIP_K13", "HE5_HDFE_COMP_SZIP_EC", "HE5_HDFE_COMP_SZIP_NN", "HE5_HDFE_COMP_SZIP_K13orEC", "HE5_HDFE_COMP_SZIP_K13orNN", "HE5_HDFE_COMP_SHUF_DEFLATE", "HE5_HDFE_COMP_SHUF_SZIP_CHIP", "HE5_HDFE_COMP_SHUF_SZIP_K13", "HE5_HDFE_COMP_SHUF_SZIP_EC", "HE5_HDFE_COMP_SHUF_SZIP_NN", "HE5_HDFE_COMP_SHUF_SZIP_K13orEC", "HE5_HDFE_COMP_SHUF_SZIP_K13orNN"}; /* Compression method Codes */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3189:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"Cannot allocate memory for utility string.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3201:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3229:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_ZAXZa[idx].zaname, "z", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3239:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf , "Cannot get the field group code.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3306:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"\"CompressionParams\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3321:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"DeflateLevel\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3336:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3351:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3366:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3381:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3396:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3411:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n"
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3427:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"DeflateLevel\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3442:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3457:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3472:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3487:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3502:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3517:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( errbuf,"The \"BlockSize\" string not found in metadata.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3583:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3592:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3641:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for namebuf.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3741:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2] = {NULL, NULL}; /* Ptrs to the begining and end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3742:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE]; /* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3743:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX]; /* String pointers for parsed string */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3744:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimstr[HE5_HDFE_DIMBUFSIZE]; /* Individual dimension entry string */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3745:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimstr[HE5_HDFE_DIMBUFSIZE]; /* Individual max. dimension entry string */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3746:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3769:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3781:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_ZAXZa[idx].zaname, "z", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3786:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get pointer to metabuf.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3918:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"DataType\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3939:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert from \"long\" to \"int\" data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3949:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"DimList\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3995:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "The \"MaxdimList\" string not found in metadata. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4031:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4044:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the rank of the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4056:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the dimension array of the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4068:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4131:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fieldname[HE5_HDFE_NAMBUFSIZE]; /* field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4132:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual field name */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4133:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4147:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4228:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4244:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot create the property list. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4256:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the \"CHUNKED\" type of storage. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4267:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the sizes of chunks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4341:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4359:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid/unsupported compression code. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4372:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid GZIP compression level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4388:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid SZIP compression block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4409:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Unable to compress, dataset storage layout has not been set to CHUNKED. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4419:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the layout of the raw data. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4429:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the \"CHUNKED\" type of storage of the raw data. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4458:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4481:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4489:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4512:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4520:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4543:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4551:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4574:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4582:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4605:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orEC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4613:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4636:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4644:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4664:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4673:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4693:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4705:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4713:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4733:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4745:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4753:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4773:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4785:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4793:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4813:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4825:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4833:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4853:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4865:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orEC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4873:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4893:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4905:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4913:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4937:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid compression method \"%d\" . \n", compcode);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5021:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5040:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid/unsupported compression code. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5053:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid GZIP compression level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5069:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid SZIP compression block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5103:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the \"CHUNKED\" type of storage. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5117:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the layout of the raw data. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5131:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the \"CHUNKED\" type of storage. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5146:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the sizes of chunks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5162:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the sizes of chunks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5170:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid dataset rank,\"%d\" . \n", rank);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5199:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5222:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5230:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5253:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5261:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5284:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5292:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5315:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5323:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5346:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orEC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5354:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5377:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5385:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5405:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5414:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set GZIP compresssion method and level. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5434:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5446:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_CHIP compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5454:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5474:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5486:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13 compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5494:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5514:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5526:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_EC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5534:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5554:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5566:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_NN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5574:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5594:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5606:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orEC compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5614:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5634:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5646:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set SZIP_K13orNN compresssion method and block size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5654:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Szip does not have encoder; szip compression won't apply to datafields.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5674:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot set the shuffling method. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5687:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid (unsupported) compression method \"%d\". \n", compcode);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5781:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_UTLBUFSIZE]; /* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5782:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf2[HE5_HDFE_UTLBUFSIZE]; /* Utility buffer 2 */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5783:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf1[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer 1 */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5784:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf2[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer 2 */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5785:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5786:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlstbuf[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5787:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlstbuf[HE5_HDFE_DIMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5788:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char compparmbuf[HE5_HDFE_DIMBUFSIZE];/* Compression parmeter */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5789:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *HDFcomp[18] = {"HE5_HDFE_COMP_NONE", "HE5_HDFE_COMP_RLE", "HE5_HDFE_COMP_NBIT", "HE5_HDFE_COMP_SKPHUFF", "HE5_HDFE_COMP_DEFLATE", "HE5_HDFE_COMP_SZIP_CHIP", "HE5_HDFE_COMP_SZIP_K13", "HE5_HDFE_COMP_SZIP_EC", "HE5_HDFE_COMP_SZIP_NN", "HE5_HDFE_COMP_SZIP_K13orEC", "HE5_HDFE_COMP_SZIP_K13orNN", "HE5_HDFE_COMP_SHUF_DEFLATE", "HE5_HDFE_COMP_SHUF_SZIP_CHIP", "HE5_HDFE_COMP_SHUF_SZIP_K13", "HE5_HDFE_COMP_SHUF_SZIP_EC", "HE5_HDFE_COMP_SHUF_SZIP_NN", "HE5_HDFE_COMP_SHUF_SZIP_K13orEC", "HE5_HDFE_COMP_SHUF_SZIP_K13orNN"}; /* Compression code names */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5823:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for defining field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5831:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf1, "HE5_ZAXZDname array too small.\nPlease increase ");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5832:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf1, "size of HE5_HDFE_NAMBUFSIZE in \"HE5_HdfEosDef.h\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5833:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(errbuf2, "HE5_ZAXZDdims array too small.\nPlease increase ");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5834:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(errbuf2, "size of HE5_HDFE_DIMBUFSIZE in \"HE5_HdfEosDef.h\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6042:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Dimension rank doesn't match Maximum dimension rank. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6114:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid (unsupported) field group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6296:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the size of a datatype. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6307:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for fill value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6328:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot store fill value in the attribute \"_FillValue\".");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6491:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Compression code \"%d\" is not supported. \n", compcode);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6515:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6529:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert \"hid_t\" to \"hsize_t\" data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6684:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6685:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlbuf[HE5_HDFE_DIMBUFSIZE];/* Utility buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6695:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6711:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert metadata value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6729:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot insert metadata value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6783:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6811:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot write the attribute value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6865:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6880:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the attribute value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6933:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6947:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve information about attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7000:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7014:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve information about attribute. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7065:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7081:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/ZAS/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7087:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7150:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Ptrs to start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7151:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE]; /* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7152:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7160:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for ZA ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7172:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_ZAXZa[idx].zaname, "z", "Dimension", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7230:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size = (hsize_t)atol(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7306:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fldnm[HE5_FLDNUMBERMAX]; /* Array of names */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7308:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7309:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE]; /* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7310:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr2[HE5_HDFE_UTLBUFSIZE];/* Utility string 2 */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7311:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr[HE5_DTSETRANKMAX]; /* String pointer array */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7313:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7328:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7351:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup( fid, HE5_ZAXZa[idx].zaname, "z", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7352:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr2, "DataFieldName");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7388:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utlstr, "\t\t\t\t");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7419:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempfield = (char *)calloc(fldnmlen[i] + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7440:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7453:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type class ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7476:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Failed to see if string field is varaible or fixed length.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7493:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7543:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7605:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7613:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7624:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Inquiry about fields in \"Data Fields\" group fails. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7687:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7720:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid group flag (\"%d\"). \n", group);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8012:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8027:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid ZA ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8071:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the rank of the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8082:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the layout of the raw data. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8094:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the sizes of chunks. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8110:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release property list ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8121:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8184:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *metaptrs[2]={NULL,NULL}; /* Start/end of SM */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8185:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utlstr[HE5_HDFE_UTLBUFSIZE];/* Utility string */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8186:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char valName[2][32]; /* Strings to search for */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8187:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8210:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_ZAXZa[idx].zaname, "z", "Dimension", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8212:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "DimensionName");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8220:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_ZAXZa[idx].zaname, "z", "DimensionMap", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8222:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "DataDimension");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8230:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_ZAXZa[idx].zaname, "z","IndexDimensionMap", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8232:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "DataDimension");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8240:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
metabuf = (char *)HE5_EHmetagroup(fid, HE5_ZAXZa[idx].zaname, "z", "DataField", metaptrs);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8242:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "DataFieldName");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8248:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Invalid (unsupported) entry code \"%d\". \n", entrycode);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8259:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the number of entries. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8275:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(&valName[0][0], "\t\tOBJECT");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8301:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get metavalue. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8378:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8387:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about ZA. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8473:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fieldname[HE5_HDFE_NAMBUFSIZE]; /* Field name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8474:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual field name */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8475:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_DIMBUFSIZE]; /* Maximum dimension list */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8476:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8506:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8555:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8570:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8604:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Maximum dimension size is smaller than dimension size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8665:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot extend the dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8697:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get data space ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8729:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot select a hyperslab. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8758:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the data space.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8783:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8807:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data type class ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8834:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8857:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for attrlist1.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8880:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8911:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8942:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8970:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for attrlist2.\n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8998:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9082:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9118:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9146:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write data to the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9192:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9220:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to memory data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9245:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot read data from the dataset.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9283:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release memory data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9295:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the file data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9307:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9463:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fieldname[HE5_HDFE_NAMBUFSIZE]; /* Buffer for name of a field */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9464:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldactualname[HE5_HDFE_NAMBUFSIZE];/* Actual name of a field */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9466:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[HE5_HDFE_NAMBUFSIZE]; /* Field Name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9467:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9482:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get actual name of the field.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9537:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9550:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the dataset rank.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9565:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9576:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get the data space dimension sizes.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9587:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9598:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the data space ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9653:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9675:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data dataset ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9698:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the \"Data Fields\" group ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9712:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the za group ID. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9785:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9819:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID for fillvalue.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9832:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9845:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create the dataset property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9916:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9926:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10091:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10112:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the dataset data type. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10121:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type size. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10130:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release the data type ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10196:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10225:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10243:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10298:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10314:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10332:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10387:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10401:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10419:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10474:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10488:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot open the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10506:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the \"Data Fields\" group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10561:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10578:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/ZAS/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10580:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10587:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10649:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10678:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10697:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10816:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10833:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10852:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10970:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:10985:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11004:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11059:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the field group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11122:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11137:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11156:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11211:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot release the field group ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11273:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11287:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for the dataset name buffer. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11298:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for the group name buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11319:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/Data Fields/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11321:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsname,"/HDFEOS/ZAS/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11331:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11391:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11404:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11431:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"buf\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11453:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"aliasname\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11532:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11543:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11555:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid input group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11621:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11637:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/ZAS/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11639:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11646:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the fields & aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11656:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11714:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11723:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11736:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid input group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11749:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"statbuf\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11858:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11888:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11900:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11912:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11926:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields & aliases in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11939:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11953:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the list of fields & aliases in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11965:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the aliases.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11982:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"buff\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11996:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"tmpbuf\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12020:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for \"nameptr\". \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12068:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the aliases.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12088:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot find the aliases.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12102:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Invalid input field group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12111:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12172:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12185:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12198:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error returning field group flag. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12273:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char grpname[HE5_HDFE_NAMBUFSIZE];/* Group name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12274:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12285:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12291:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/ZAS/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12295:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12368:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char grpname[HE5_HDFE_NAMBUFSIZE];/* Group name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12369:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12379:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12385:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/ZAS/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12389:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12404:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot close external file. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12461:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char grpname[HE5_HDFE_NAMBUFSIZE];/* Group name buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12462:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12473:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Checking for za ID failed. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12479:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(grpname,"/HDFEOS/ZAS/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12483:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(grpname,"/Data Fields");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12491:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open group containing mounted file. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12502:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot open mounted dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12513:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the data type ID of mounted dataset. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12524:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot convert to memory data type.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12535:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read mounted data.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12547:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release data type ID.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12558:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release dataset ID.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12569:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release group ID.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12628:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12641:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12688:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory for filename. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12706:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot set external dataset property list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12789:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12801:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Checking for valid za ID failed.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12834:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of external files.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12864:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about external file.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12895:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot release property list ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12978:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "File access flag is not supported. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13058:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot create za. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13110:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer*/
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13163:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13170:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot detach from the za. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13217:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13224:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot close the file. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13284:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_ZAdefdim from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13375:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13387:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13402:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for maxdimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13416:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in maximum dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13494:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13501:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling ZAdefcomp() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13568:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tempdims.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13587:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling ZAdefchunk() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13644:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13751:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13761:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13772:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13796:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tmpString.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13908:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_ZAinfo() from FORTRAN wrapper. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14002:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14012:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14023:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14044:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14085:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_ZAinfo() from FORTRAN wrapper. \n") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14172:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14192:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14202:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14205:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14213:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14294:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14299:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14355:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14449:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14458:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14468:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14616:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for start.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14625:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for stride.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14635:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for edge.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14669:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Element length passed in is not correct. Should be same as in declration");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14718:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Number of elements passed in cannot be zero.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14752:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Number of elements passed in cannot be zero.") ;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14784:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strcpy((char *)buffer,strdatabuf[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14791:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strcat((char *)buffer,strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14870:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14879:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot read the attribute value. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14926:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14999:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15017:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15038:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of local attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15048:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15051:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15059:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15067:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write local attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15086:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write local attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15139:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15197:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15205:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling ZAnentries() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15214:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tdims.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15224:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling HE5_ZAinqdims() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15284:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15294:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15303:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot allocate memory. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15313:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot get the number of fields in \"Data Fields\" group. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15366:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15373:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling ZAdiminfo() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15456:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15493:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15507:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in maximum dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15595:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling ZAchunkinfo() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15687:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot convert to HDF5 type data type ID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15698:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15717:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Size of databuf is less than the number of group attribute elements.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15727:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
tempbuf = (char * )calloc((count[0]+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15730:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for temp buffer.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15738:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy(tempbuf,(char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15744:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15761:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot write group attribute value.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15835:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15845:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15943:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15953:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15963:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16060:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16070:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16084:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16167:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16177:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16187:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16201:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about group attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16260:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16267:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16310:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16318:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16387:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16397:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16410:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about local attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16495:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for count.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16505:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for size.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16515:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for ntype.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16528:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about local attribute.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16590:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16597:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the attributes. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16670:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for typeID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16680:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tsize.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16691:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for classID.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16703:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for order.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16721:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about data type.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16786:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16791:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot get information about za.");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16835:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16843:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Failed to get number of entries in a za.");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16892:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16901:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for aliaslist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16912:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in alias list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16926:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling ZAsetalias() from FORTRAN wrapper. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16977:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16984:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling ZAdropalias() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17033:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17040:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the fields & aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17089:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17096:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling ZAaliasinfo() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17147:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17154:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Error calling ZAfldrename() from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17224:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for tempdims.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17243:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_ZAdefcomchunk from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17308:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17315:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17326:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in file list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17339:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot parse the input list/input list is empty.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17352:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input offset array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17364:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input size array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17388:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_ZAsetextdata from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17457:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17464:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for output list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17475:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input offset array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17487:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for input size array.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17504:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error calling HE5_ZAgetextdata from FORTRAN wrapper.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17518:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in output file list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17613:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for dimlist.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17625:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot reverse entries in dimension list.\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17692:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17700:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Cannot retrieve the aliases. \n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17750:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17811:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17871:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17930:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE];/* Error message buffer */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17988:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18045:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18156:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18165:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18174:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18242:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18252:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"dtype\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18261:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"count\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18271:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf,"Cannot allocate memory for \"size\".\n");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:18338:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[HE5_HDFE_ERRBUFSIZE]; /* Buffer for error message */
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestAlias.c:40:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestAlias.c:41:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestAlias.c:42:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *namebuf, attrlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestAlias.c:53:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldalias[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestAlias.c:54:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char aliaslist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:183:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Verbosity = atoi(argv[i + 1]);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:308:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
MESSAGE(11,fp = fopen("TestGrid_c.txtout","w"););
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:4015:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str_buf,"NO ENTRY !");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:4294:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str_buf, "NO ENTRY !");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:4374:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str_buf, "NO ENTRY !");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:4431:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str_buf, "NO ENTRY !");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:4488:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str_buf, "NO ENTRY !");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:4489:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str_buf2, "NO ENTRY !");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:4673:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str_buf,"NO ENTRY !");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:6146:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str_buf, "NO ENTRY !");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestGrid.c:6147:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str_buf2, "NO ENTRY !");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:76:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spec[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:82:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:86:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:94:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:100:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[10];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:103:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:114:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:120:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spec[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:141:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spc[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:142:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc[16];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:143:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[ 2 ];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:160:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[NAMEBUF_SIZE];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:181:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Verbosity = atoi(argv[CLLoop + 1]);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:187:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
MESSAGE(11,fp=fopen(namebuf,"w"););
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:487:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Time");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:488:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"Concentration");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:489:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Species");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:642:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Label");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:643:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"Longitude");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:644:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Latitude");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:645:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[3],"DeployDate");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:646:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[4],"ID");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:725:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Time");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:726:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"Rainfall");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:727:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Temperature");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:728:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[3],"ID");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:915:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Label");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:916:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"DeployDate");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:917:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Weight");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:918:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[3],"ID");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1004:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Time");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1005:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"Longitude");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1006:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Latitude");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1007:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[3],"Rainfall");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1008:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[4],"Temperature");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1009:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[5],"ID");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1173:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp_in = fopen(namebuf, "r");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1304:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp_in = fopen(namebuf, "r");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1364:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp_in = fopen(namebuf, "r");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1654:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp_in = fopen(namebuf, "r");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1715:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp_in = fopen(namebuf, "r");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:2528:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(buf_1.spec,"AM");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c:57:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c:58:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c:59:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *namebuf, attrlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c:60:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c:61:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldalias[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c:62:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char aliaslist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestProfile.c:60:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char profnames[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestProfile.c:61:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestProfile.c:62:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[HE5_HDFE_NAMBUFSIZE];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestSwath.c:184:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char DimList[200];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestSwath.c:206:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Verbosity = atoi(argv[i + 1]);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestSwath.c:279:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
MESSAGE(11,fp=fopen("TestSwath_c.txtout","w"););
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_gd_threads-1.c:21:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char gridName[81];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_gd_threads-1.c:62:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(threadInfo[loopCount].gridName,"UTMGrid_%d",loopCount);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_gd_threads-2.c:21:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char gridName[81];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_gd_threads-2.c:55:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(threadInfo[loopCount].gridName,"UTMGrid_%d",loopCount);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:21:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pointName[81];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:54:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(threadInfo[loopCount].pointName,"POINT_%d",loopCount);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:89:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spc[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:96:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spec[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:104:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Spc[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:137:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[0],"Time");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:138:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[1],"Concentration");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:139:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dtsinfo->fieldname[2],"Species");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:156:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen("simple.txt", "r");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:21:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pointName[81];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:55:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(threadInfo[loopCount].pointName,"POINT_%d",loopCount);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:96:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spc[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:102:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Spc[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:108:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spec[8];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:130:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen("simple.txt", "r");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_sw_threads-1.c:21:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char swathName[81];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_sw_threads-1.c:54:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(threadInfo[loopCount].swathName,"SWATH_%d",loopCount);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_sw_threads-2.c:21:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char swathName[81];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_sw_threads-2.c:54:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(threadInfo[loopCount].swathName,"SWATH_%d",loopCount);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c:57:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dimlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c:58:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxdimlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c:59:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *namebuf, attrlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c:60:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldlist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c:61:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fldalias[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c:62:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char aliaslist[80];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestZa.c:92:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char DimList[200];
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestZa.c:113:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Verbosity = atoi(argv[i + 1]);
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestZa.c:121:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
MESSAGE(11,fp=fopen("TestZa_c.txtout","w"););
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:51:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char inputFile[COMMAND_STRING];
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:52:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char gridName[COMMAND_STRING];
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:53:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outputFile_nxny[COMMAND_STRING];
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:54:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outputFile_lat[COMMAND_STRING];
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:55:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outputFile_lon[COMMAND_STRING];
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:56:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outFileFlag[COMMAND_STRING];
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:65:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outstr[128];
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:135:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Com->RowCol[0] = atol(argv[5]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:136:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Com->RowCol[1] = atol(argv[6]);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:139:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Row or Column numbers cannot be negative.\n");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:156:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(Com->outputFile_nxny,"_ASCII");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:157:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(Com->outputFile_lat,"_lat");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:158:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(Com->outputFile_lon,"_lon");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:173:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(Com->outputFile_nxny,"_ASCII");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:174:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(Com->outputFile_lat,"_lat");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:175:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(Com->outputFile_lon,"_lon");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:176:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(Com->outFileFlag, "-a");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:190:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(Com->outFileFlag, "-a");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:229:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char gridlist[1000], tmp_gridlist[1000],*grids[20];
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:251:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char projection[64];
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:270:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Problem with command line entries.\n");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:367:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"GEOGRAPHIC");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:370:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"UNIVERSAL TRANSVERSE MERCATOR");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:373:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"LAMBERT CONFORMAL CONIC");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:376:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"POLAR STREOGRAPHIC");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:379:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"POLYCONIC");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:382:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"TRANSVERSE MERCATOR");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:385:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"LAMBERT AZIMUTHAL");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:388:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"HOTIN OBLIQUE MERCATOR");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:391:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"SPACE OBLIQUE MERCATOR");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:394:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"INTERRPTED GOODE");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:397:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"STATE PLANE");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:400:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"INTEGERIZED SINUSOIDAL");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:403:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"SINUSOIDAL");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:406:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"MERCATOR");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:409:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"ALBERS CONICAL EQUAL AREA");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:413:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(projection,"NOT SUPPORTED");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:475:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Requestrd Row number %ld invalid. Should be less than %d.\n",(&Com)->RowCol[0], ydimsize);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:488:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Requestrd Column number %ld invalid. Should be less than %d.\n",(&Com)->RowCol[1],xdimsize);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:517:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "memory problem allocating space to lons....\n");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:530:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "memory problem allocating space to lats....\n");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:543:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "memory problem allocating space to rows....\n");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:556:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "memory problem allocating space to cols....\n");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:628:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfile_nxny=fopen((&Com)->outputFile_nxny, "w" );
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:629:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfile_lat=fopen((&Com)->outputFile_lat, "wb" );
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:630:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfile_lon=fopen((&Com)->outputFile_lon, "wb" );
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:634:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfile_nxny=fopen((&Com)->outputFile_nxny, "w" );
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:642:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfile_nxny=fopen((&Com)->outputFile_nxny, "w" );
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:745:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error writing latitudes to binary output.\n");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:754:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "Error writing longitudes to binary output.\n");
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:66:68: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if(strncmp(what, "Point projects into a circle of radius", strlen("Point projects into a circle of radius")) == 0) returnStatus = PGSGCT_E_POINT_PROJECT;
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:107:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(efile) == 0)
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:118:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(efile) == 0)
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:141:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(pfile) == 0)
data/hdf-eos5-5.1.16.dfsg.1/gctp/src/report.c:152:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(pfile) == 0)
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:316:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
e = s + strlen(s);
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1159:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define CSTRING( A,B,C) (B.clen=strlen(A),B.f.dsc$a_pointer=A, \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1165:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define CPSTRING( A,B,C) (B.dsc$w_length=strlen(A),B.dsc$a_pointer=A, \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1172:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define CSTRING( A,B,C) (B.clen=strlen(A), \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1177:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define CPSTRING( A,B,C) (B=strlen(A), C==sizeof(char*)?0: \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1182:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define CSTRING( A,B,C) (B.clen=strlen(A), \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1187:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define CPSTRING( A,B,C) (B=strlen(A), C==sizeof(char*)?0: \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1554:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define RRRRPSTR( A,B,D) if (B) memcpy(A,B,PGSMIN(strlen(B),D)), \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1555:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(D>strlen(B)?memset(A+strlen(B),' ', D-strlen(B)):0), free(B);
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1555:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(D>strlen(B)?memset(A+strlen(B),' ', D-strlen(B)):0), free(B);
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1555:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(D>strlen(B)?memset(A+strlen(B),' ', D-strlen(B)):0), free(B);
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1641:67: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(AS->dsc$a_pointer,A0, PGSMIN(AS->dsc$w_length,(A0==NULL?0:strlen(A0))) ); \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1642:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
AS->dsc$w_length>(A0==NULL?0:strlen(A0))? \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1643:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(AS->dsc$a_pointer+(A0==NULL?0:strlen(A0)),' ', \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1644:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
AS->dsc$w_length-(A0==NULL?0:strlen(A0))):0;
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1648:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(_fcdtocp(AS),A0, PGSMIN(_fcdlen(AS),(A0==NULL?0:strlen(A0))) ); \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1649:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_fcdlen(AS)>(A0==NULL?0:strlen(A0))? \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1650:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(_fcdtocp(AS)+(A0==NULL?0:strlen(A0)),' ', \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1651:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_fcdlen(AS)-(A0==NULL?0:strlen(A0))):0;
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1653:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define KSTRING memcpy(AS,A0, PGSMIN(D0,(A0==NULL?0:strlen(A0))) ); \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1654:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
D0>(A0==NULL?0:strlen(A0))?memset(AS+(A0==NULL?0:strlen(A0)), \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1654:67: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
D0>(A0==NULL?0:strlen(A0))?memset(AS+(A0==NULL?0:strlen(A0)), \
data/hdf-eos5-5.1.16.dfsg.1/include/cfortHdf.h:1655:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
' ', D0-(A0==NULL?0:strlen(A0))):0;
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readhdfeosinformationmetadata.c:70:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(metabuf, "");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_readhdfeosinformationmetadata.c:81:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
coremeta = (char *)malloc((strlen(MetadataName)+1)*sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writeAlldimscale.c:165:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(unit, "s");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_writedimscale.c:192:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(unit, "s");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrunlimfld.c:61:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(buf1, "");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrunlimfld.c:62:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(buf2, "");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrunlimfld.c:96:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(buf1, "");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_gd_wrunlimfld.c:97:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(buf2, "");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:99:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:99:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:118:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_1[n].Spc, spc, sizeof(char)*strlen(spc));
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:119:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_1[n].Spc[strlen(spc)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:144:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:144:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:163:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_2[n].Id, id, sizeof(char)*strlen(id));
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:164:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_2[n].Id[strlen(id)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:182:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:182:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:200:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_3[n].Id, id, sizeof(char)*strlen(id));
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:201:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_3[n].Id[strlen(id)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:231:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:231:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:249:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_4[n].Id, id, sizeof(char)*strlen(id));
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:250:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_4[n].Id[strlen(id)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:266:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:266:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen("simple.txt") + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:286:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_5[n].Id, id,sizeof(char)*strlen(id));
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_pt_writedata.c:287:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_5[n].Id[strlen(id)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_definefields_and_all_dimscales.c:54:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(mydummyMets,"");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_info.c:236:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(attrlist,"");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_info.c:248:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(attrlist,"");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_sw_info.c:255:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(attrlist,"");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_info.c:131:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(attrlist,"");
data/hdf-eos5-5.1.16.dfsg.1/samples/he5_za_info.c:143:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(attrlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2155:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_HeosTable[i].filename = (char *)calloc((strlen(filename)+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2198:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(version_buf) < 12)
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2204:8: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(version_buf1, version_buf, 12);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:2950:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(instring);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3411:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(ptr[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3478:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tempdimlist = (char *)calloc((strlen(dimlist) + 1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3774:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(outstring, "(");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3782:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(outstring, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3794:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(outstring, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3803:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(outstring, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:3814:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(outstring, ")");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4234:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newmetaptr = (char *)malloc(sizeof(char)*(strlen(metaptr)+1));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4277:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len1 = strlen(newmetaptr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4279:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len2 = strlen(newmetaptr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4420:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newmetastr = (char *)malloc(sizeof(char)*strlen(metastr)+6);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4421:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(newmetastr, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:4423:11: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(newmetastr, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5002:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tempdim = (hsize_t)strlen( newbuf );
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5286:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
metalen = strlen(metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5395:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
metalen = strlen(metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5458:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newmetaptr = (char *)malloc(sizeof(char)*(strlen(metaptr)+1));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5501:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len1 = strlen(newmetaptr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5503:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len2 = strlen(newmetaptr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5644:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newmetastr = (char *)malloc(sizeof(char)*strlen(metastr)+6);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5645:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(newmetastr, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:5647:11: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(newmetastr, "\"");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6196:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
seglen = strlen(utlstr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6330:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tempdim = (hsize_t)strlen( newbuf );
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6477:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(parameter) + 1;
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:6482:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(retstr, "=");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7187:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
metalen = strlen(metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7190:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
Stored_meta[fid%HE5_EHIDOFFSET].metabuf_length = strlen(metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7577:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( (size_t)count[0] > strlen((char *)datbuf) )
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7579:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = strlen((char *)datbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7688:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( (size_t)count[0] > strlen((char *)datbuf) )
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:7690:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = strlen((char *)datbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8201:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strncmp(name, indxstr, strlen(indxstr)) != 0 && strncmp(name, bsom, strlen(bsom)) != 0 && strncmp(name, lvwr, strlen(lvwr)) != 0 )
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8201:77: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strncmp(name, indxstr, strlen(indxstr)) != 0 && strncmp(name, bsom, strlen(bsom)) != 0 && strncmp(name, lvwr, strlen(lvwr)) != 0 )
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8201:121: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strncmp(name, indxstr, strlen(indxstr)) != 0 && strncmp(name, bsom, strlen(bsom)) != 0 && strncmp(name, lvwr, strlen(lvwr)) != 0 )
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8210:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = ( ptr->count == 1) ? strlen(name) : strlen(name) + 1;
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8210:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = ( ptr->count == 1) ? strlen(name) : strlen(name) + 1;
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8217:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr->name = (char *)calloc( (strlen(name)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8223:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat( ptr->name, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:8348:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(objectlist, inout.name, strlen(inout.name));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10328:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(newbuf, prevmetaptr, strlen(prevmetaptr));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10328:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(newbuf, prevmetaptr, strlen(prevmetaptr));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10329:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newbuf[strlen(prevmetaptr)] = '\0';
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10334:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii = strlen(newbuf) - strlen(meta_dim_name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10334:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii = strlen(newbuf) - strlen(meta_dim_name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10335:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
jj = strlen(utlstr) - strlen(utl_dim_name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10335:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
jj = strlen(utlstr) - strlen(utl_dim_name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10345:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tempdim = (hsize_t)strlen( newbuf );
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10686:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
metalen = strlen(metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10815:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(newbuf, prevmetaptr, strlen(prevmetaptr));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10815:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(newbuf, prevmetaptr, strlen(prevmetaptr));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10816:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newbuf[strlen(prevmetaptr)] = '\0';
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10817:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newbuflen = strlen(newbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10825:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(newbuf)-strlen(temp_smetadata_eos5obj_section);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10825:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(newbuf)-strlen(temp_smetadata_eos5obj_section);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10831:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(temp_smetadata_eos5obj_section)-strlen(temp_smetadata_dimname_section);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10831:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(temp_smetadata_eos5obj_section)-strlen(temp_smetadata_dimname_section);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10840:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(temp_smetadata_dimname_section)-strlen(temp_smetadata_dimsize_section);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10840:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(temp_smetadata_dimname_section)-strlen(temp_smetadata_dimsize_section);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10861:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr2len = strlen(utlstr2);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10863:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp_sizestrlen = strlen(temp_sizestr);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10868:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((utlstr2len+ii+1) <strlen(newbuf)) {
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10878:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii+((strlen(temp_smetadata_dimsize_section)-strlen(temp_sizedata))-temp_sizestrlen);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:10878:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii+((strlen(temp_smetadata_dimsize_section)-strlen(temp_sizedata))-temp_sizestrlen);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11290:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11313:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11791:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(access_code, "r");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:11797:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(access_code, "w");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12231:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newAttrName = (char *)malloc((strlen(MetadataName) + 4) * sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12233:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffsize = strlen(metabuff);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12503:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newAttrName = (char *)malloc((strlen(MetadataName) + 4) * sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12565:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(metabuf, "");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12581:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
metalen = strlen(metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12639:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
metalen = strlen(metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12641:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*bufferSize = (long)strlen(metabuf);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12858:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(memb_name, "");
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12894:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len =(long)strlen(memb_name);
data/hdf-eos5-5.1.16.dfsg.1/src/EHapi.c:12918:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(metadatanames,",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:436:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(gridname) > HE5_OBJNAMELENMAX)
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:822:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
grpname = (char *)calloc( (strlen(gridname)+40), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:947:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf = (char *) calloc(strlen(inout.name) + 2, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:959:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1001:71: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_GDXGrid[ emptyslot ].ddataset[ i ].name = (char *) calloc((strlen(fldname)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1022:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(namebuf, comma + 1, strlen(comma)-1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1023:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf[strlen(comma)-1] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1359:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
GCTPproj[ 97 ] = (char *)calloc( (strlen("HE5_GCTP_CEA")+ 1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1372:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
GCTPproj[ 98 ] = (char *)calloc( (strlen("HE5_GCTP_BCEA")+ 1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1388:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
GCTPproj[ 99 ] = (char *)calloc( (strlen("HE5_GCTP_ISINUS") + 1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1420:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(projparmbuf, "(");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:1449:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(projparmbuf);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4693:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:4699:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5355:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5363:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5539:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5540:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5615:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimlist, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5629:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5630:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5647:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5648:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:5661:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(maxdimlist, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6236:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *)calloc(strlen(dimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6252:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist0 = (char *)calloc(strlen(dimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6373:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6457:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6467:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma)-1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6468:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf[strlen(comma)-1]= 0;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6501:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *)calloc(strlen(maxdimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6503:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6574:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:6587:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7093:81: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_GDXGrid[idx].ddataset[HE5_GDXGrid[idx].nDFLD].name = (char *)calloc( (strlen(fieldname)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7198:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7207:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf2,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7208:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimlstbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7233:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf2,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7234:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimlstbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7275:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7282:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7289:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7296:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7303:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7310:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7317:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7324:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7331:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7338:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7345:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7352:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7359:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7366:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7373:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(compparmbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7389:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf2,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7394:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf2,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:7403:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf2, ")");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10579:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10587:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10603:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10604:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10623:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *)calloc(strlen(dimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10635:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist0 = (char *)calloc(strlen(dimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10719:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10793:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma)-1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10794:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf[strlen(comma)-1]= 0;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10817:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *)calloc(strlen(maxdimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10828:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf,",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:10883:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf,comma+1,strlen(comma+1)+1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11403:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strsize = strlen(chardatbuf[ibuf]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:11743:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stlen = strlen(fieldname);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13077:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlstr, "=");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13100:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize += strlen(utlstr) - 2;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13140:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2); \
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13141:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13308:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13309:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13312:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimnames, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13559:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
grpname = (char *) calloc( (strlen(HE5_GDXGrid[idx].gdname)+40), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13767:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlstr, "=");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:13793:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fieldlist, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18096:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slendupregion = strlen(HE5_GDXRegion[oldRegionID]->DimNamePtr[j]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18291:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(vertObj) - 4;
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:18359:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:20576:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dtsname,"/");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21303:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf = (char *)calloc(strlen(filelist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21319:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21366:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(namebuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21526:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(filelist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21532:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(filename,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21556:6: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(filelist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21560:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(filelist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21716:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(actualname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21726:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(actualname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21814:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = (char *)calloc(strlen(aliaslist)+64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21827:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf,",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:21865:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(buf,comma+1,strlen(comma+1)+1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22635:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize = strlen(fldalias) - strlen(fieldlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22635:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize = strlen(fldalias) - strlen(fieldlist);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22652:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buff = (char *)calloc(strlen(fldalias)+6, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22680:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buff, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22681:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fieldlist, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22707:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(nameptr, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22721:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(buff,comma+1,strlen(comma+1)+1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:22756:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(aliaslist, tmpbuf, *strbufsize-1);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23459:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist = (char *)calloc(strlen(fortdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:23489:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxdimlist = (char *)calloc(strlen(fortmaxdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24028:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(strdatabuf[i],(char *)data+(strsize*i), strsize);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24802:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stlen = strlen(strdatabuf[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24806:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat((char *)buffer," ");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24811:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stlen = strlen(strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:24814:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat((char *)buffer," ");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25010:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25033:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25166:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25189:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25321:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:25344:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:28796:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
aliaslist = (char *)calloc(strlen(fortaliaslist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29077:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist = (char *) calloc(strlen(fortdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29887:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(lastables, ptr, strlen(ptr));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29888:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lastables[(int)strlen(ptr)] = '\0';
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:29993:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(maxdimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:30007:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:30082:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/GDapi.c:30093:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:335:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(pointname) > HE5_OBJNAMELENMAX)
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:706:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
grpname = (char *)calloc( (strlen(pointname)+40), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:833:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(LevelName, LevelName + 1, strlen(LevelName) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:834:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
LevelName[strlen(LevelName) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:846:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(tmpdata.level[j].name) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:861:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(char *)calloc( (strlen(tmpdata.level[i].name)+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1315:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
grpname = (char *) calloc( (strlen(HE5_PTXPoint[idx].ptname)+40),sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1442:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strncmp(info->fieldname[i], fldname, strlen(fldname)) == 0 )
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1724:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strsize = strsize + strlen(fldname) + 1 ;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1753:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fldlist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1777:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize = (long)strlen(fldlist);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1866:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize = (long)strlen(HE5_PTXPoint[ idx ].level[ level ].name);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:1919:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr->level[i].name = (char *)calloc((strlen(name) + 1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2022:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(levelname) > HE5_OBJNAMELENMAX)
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2216:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_PTXPoint[idx].level[nlevels].name = (char *)calloc((strlen(levelname)+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2532:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlbuf, levelinfo->fieldname[i], strlen(levelinfo->fieldname[i]));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2533:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlbuf[strlen(levelinfo->fieldname[i])] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:2534:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ":");
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:4737:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
grpname = (char *) calloc( (strlen(HE5_PTXPoint[idx].ptname)+40), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5924:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(linkfield, linkfield + 1, strlen(linkfield) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:5925:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
linkfield[strlen(linkfield) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:6335:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (memcmp(currLevel.fieldname[k], utlbuf, strlen(utlbuf)) == 0)
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10762:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10785:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10922:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:10945:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11076:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:11099:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/PTapi.c:13800:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(LevelName,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:492:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(swathname) > HE5_OBJNAMELENMAX)
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:881:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
grpname = (char *) calloc( (strlen(swathname)+40), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:984:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmpname1 = (char *) calloc( (strlen(grpname)+ 20), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1036:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf = (char *) calloc(strlen(inout.name) + 2, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1048:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1098:67: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_SWXSwath[emptyslot].ddataset[i].name = (char *)calloc((strlen(fldname)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1119:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(namebuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1135:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmpname2 = (char *)calloc( (strlen(grpname)+60), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1187:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf = (char *) calloc(strlen(inout.name) + 2, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1199:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1245:68: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_SWXSwath[emptyslot].gdataset[i].name = (char *)calloc( (strlen(fldname)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1266:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(namebuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1284:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmpname3 = (char *) calloc( (strlen(grpname)+ 20), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1335:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf = (char *) calloc(strlen(inout.name) + 2, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1347:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1396:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_SWXSwath[emptyslot].pdataset[i].name = (char *)calloc((strlen(fldname)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:1416:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(namebuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4386:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:4392:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5023:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(actualname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5033:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(actualname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5333:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5334:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5363:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5364:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5376:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimlist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5387:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5391:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5392:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5405:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5406:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5416:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(maxdimlist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5565:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:5573:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7719:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(dimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7735:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7780:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7790:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7820:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(maxdimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7833:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7877:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:7887:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8156:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(char *)calloc( (strlen(fieldname)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8201:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(char *)calloc( (strlen(fieldname)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:8286:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9268:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2); \
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9269:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9382:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimnames, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9509:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlstr, "/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9515:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimmaps, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9674:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlstr, "/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9679:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(idxmaps, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9883:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlstr, "=");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:9895:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fieldlist, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10729:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlstr, "=");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:10754:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize += strlen(utlstr) - 2;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11063:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf1 = (char *) calloc((strlen(dimlist) + 2), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11072:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(dimbuf1,dimlist, strlen(dimlist));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11074:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf2 = (char *) calloc((strlen(maxdimlist) + 2), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11084:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(dimbuf2,maxdimlist, strlen(maxdimlist));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11088:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf1,",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11102:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf1, comma1 + 1, strlen(comma1 + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11104:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf2,",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11119:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf2, comma2 + 1, strlen(comma2 + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11193:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11201:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11229:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(maxdimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11239:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf,",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11264:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:11720:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strsize = strlen(chardatbuf[ibuf]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12285:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12291:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:12828:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:13533:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14351:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14744:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14824:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(geodim,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14833:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(tgeodim,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14859:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:14932:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15345:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15363:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(vertObj) - 4;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:15495:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(dimlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16282:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16309:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(geodim,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16318:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(tgeodim,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16346:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:16421:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:18891:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dtsname,"/");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19183:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(dimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19198:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19242:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19252:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19282:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(maxdimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19294:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19338:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19348:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19556:79: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_SWXSwath[idx].pdataset[HE5_SWXSwath[idx].nPROF].name = (char *)calloc( (strlen(profilename)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:19585:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20848:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf = (char *)calloc(strlen(profdata.name)+2, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:20860:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21019:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(namebuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21265:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21266:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21307:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21308:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21320:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimlist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21331:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21335:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21336:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21349:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21350:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21360:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(maxdimlist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21916:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = (char *)calloc(strlen(aliaslist)+64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21929:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf,",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:21967:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(buf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22630:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize = strlen(fldalias) - strlen(fieldlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22630:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize = strlen(fldalias) - strlen(fieldlist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22647:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buff = (char *)calloc(strlen(fldalias)+6, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22675:11: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buff, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22676:11: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fieldlist, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22702:15: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(nameptr, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22716:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(buff, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:22751:8: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(aliaslist, tmpbuf, *strbufsize-1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23359:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf = (char *)calloc(strlen(filelist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23375:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23421:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(namebuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23556:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(filelist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23562:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(filename,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23584:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(filelist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:23588:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(filelist);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24083:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24091:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24762:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist = (char *)calloc(strlen(fortdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24789:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxdimlist = (char *)calloc(strlen(fortmaxdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24926:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist = (char *)calloc(strlen(fortdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:24953:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxdimlist = (char *)calloc(strlen(fortmaxdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25369:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(strdatabuf[i],(char *)data+(strsize*i), strsize);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25821:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:25844:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26417:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stlen = strlen(strdatabuf[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26421:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat((char *)buffer," ");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26427:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stlen = strlen(strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26430:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat((char *)buffer," ");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26729:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:26752:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27813:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27836:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27969:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:27992:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30266:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist = (char *)calloc(strlen(fortdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:30291:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxdimlist = (char *)calloc(strlen(fortmaxdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31288:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31311:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:31720:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
aliaslist = (char *)calloc(strlen(fortaliaslist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32619:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist = (char *) calloc(strlen(fortdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:32731:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist = (char *) calloc(strlen(fortdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33551:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(maxdimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33565:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33613:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/SWapi.c:33623:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:336:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(zaname) > HE5_OBJNAMELENMAX)
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:670:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
grpname = (char *) calloc( (strlen(zaname)+40), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:742:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmpname = (char *) calloc( (strlen(grpname)+ 20), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:794:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf = (char *) calloc(strlen(inout.name) + 2, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:806:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:856:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_ZAXZa[emptyslot].ddataset[i].name = (char *)calloc((strlen(fldname)+1), sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:877:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(namebuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3004:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dtsname,"/");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3212:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3218:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3659:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(actualname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3669:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(actualname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3930:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3931:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3960:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3961:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3973:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimlist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3984:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3988:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:3989:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4002:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimstr,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4003:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4013:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(maxdimlist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4157:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:4165:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5853:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(dimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5868:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5912:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5922:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5952:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(maxdimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:5964:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6008:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlbuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6018:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6274:73: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HE5_ZAXZa[idx].ddataset[HE5_ZAXZa[idx].nDFLD].name = (char *)calloc( (strlen(za_name)+1), sizeof(char) );
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:6350:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(utlbuf,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7103:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(utlstr, utlstr + 1, strlen(utlstr) - 2); \
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7104:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utlstr[strlen(utlstr) - 2] = 0;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7217:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimlist, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7390:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlstr, "=");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:7402:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fieldlist, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8285:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utlstr, "=");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8310:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize += strlen(utlstr) - 2;
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8516:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8524:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8552:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimbuf = (char *) calloc(strlen(maxdimlist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8562:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(dimbuf,",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:8586:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(dimbuf,comma+1,strlen(comma+1)+1);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9038:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strsize = strlen(chardatbuf[ibuf]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9490:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:9496:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fieldname,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11428:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = (char *)calloc(strlen(aliaslist)+64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11441:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf,",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11479:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(buf,comma+1,strlen(comma+1)+1);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11962:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize = strlen(fldalias) - strlen(fieldlist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11962:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*strbufsize = strlen(fldalias) - strlen(fieldlist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:11979:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buff = (char *)calloc(strlen(fldalias)+6, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12007:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buff, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12008:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fieldlist, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12034:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(nameptr, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12048:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(buff,comma+1,strlen(comma+1)+1);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12083:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(aliaslist, tmpbuf, *strbufsize-1);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12655:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namebuf = (char *)calloc(strlen(filelist) + 64, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12671:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, ",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12717:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(namebuf, comma + 1, strlen(comma + 1) + 1);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12851:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(filelist,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12857:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(filename,"");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12879:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(filelist,",");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:12883:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slen = strlen(filelist);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13372:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist = (char *)calloc(strlen(fortdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13399:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxdimlist = (char *)calloc(strlen(fortmaxdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:13811:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(strdatabuf[i],(char *)data+(strsize*i), strsize);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14190:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14213:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14783:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stlen = strlen(strdatabuf[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14787:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat((char *)buffer," ");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14792:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stlen = strlen(strdatabuf[i]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:14795:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat((char *)buffer," ");
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15036:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15059:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf, (char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15715:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen((char *)datbuf) < count[0])
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:15738:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tempbuf,(char *)datbuf, count[0]);
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:16898:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
aliaslist = (char *)calloc(strlen(fortaliaslist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/src/ZAapi.c:17610:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dimlist = (char *) calloc(strlen(fortdimlist) + 1, sizeof(char));
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestAlias.c:120:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fldalias,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestAlias.c:126:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(aliaslist,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/grid/TestAlias.c:201:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(attrlist,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:25:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen(filename) + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:25:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(srcdir != NULL && (strlen(srcdir) + strlen(filename) + 2) <= NAMEBUF_SIZE)
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:28:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(namebuf, "/");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1183:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_1[n].spec, spc, sizeof(char)*strlen(spc));
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1184:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_1[n].spec[strlen(spc)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1313:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_2[n].id, id, sizeof(char)*strlen(id));
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1314:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_2[n].id[strlen(id)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1372:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_3[n].id, id, sizeof(char)*strlen(id));
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1373:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_3[n].id[strlen(id)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1662:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_4[n].id, id, sizeof(char)*strlen(id));
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1663:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_4[n].id[strlen(id)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1725:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_5[n].id, id,sizeof(char)*strlen(id));
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/point/TestPoint.c:1726:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_5[n].id[strlen(id)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c:121:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fldalias,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c:127:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(aliaslist,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestAlias.c:206:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(attrlist,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestProfile.c:291:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestProfile.c:292:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestProfile.c:309:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/swath/TestProfile.c:310:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(maxdimlist,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:166:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_1[n].Spc, spc, sizeof(char)*strlen(spc));
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-1.c:167:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_1[n].Spc[strlen(spc)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:140:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(datbuf_1[n].Spc, spc, sizeof(char)*strlen(spc));
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/threads/he5_pt_threads-2.c:141:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
datbuf_1[n].Spc[strlen(spc)] = 0;
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c:122:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(fldalias,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c:128:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(aliaslist,"");
data/hdf-eos5-5.1.16.dfsg.1/testdrivers/za/TestAlias.c:206:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(attrlist,"");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:71:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lenstr = strlen(gridname);
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:131:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(Com->outputFile_nxny, "");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:132:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(Com->outputFile_lat, "");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:133:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(Com->outputFile_lon, "");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:187:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(Com->outputFile_nxny, "");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:188:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(Com->outputFile_lat, "");
data/hdf-eos5-5.1.16.dfsg.1/util/HE5_GDconvert_ij2ll.c:189:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(Com->outputFile_lon, "");
ANALYSIS SUMMARY:
Hits = 6028
Lines analyzed = 157118 in approximately 5.46 seconds (28777 lines/second)
Physical Source Lines of Code (SLOC) = 94999
Hits@level = [0] 8786 [1] 581 [2] 4047 [3] 10 [4] 1389 [5] 1
Hits@level+ = [0+] 14814 [1+] 6028 [2+] 5447 [3+] 1400 [4+] 1390 [5+] 1
Hits/KSLOC@level+ = [0+] 155.938 [1+] 63.4533 [2+] 57.3374 [3+] 14.737 [4+] 14.6317 [5+] 0.0105264
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.